The price charged by Black Duck is exorbitant. For the features provided by the product, I would not want to pay a high price. There are many other products in the market that offer better features and support services compared to Black Duck at a lower cost. Even though my company is ready to pay extra charges for additional support from Black Duck, if a feature is given in a product and if it needs to be used by a user, then proper training and good documentation should be made available by the solution. If a certain set of users want to purchase a product, I believe that the solution should not charge them extra to teach them how to use the tool. A product can charge for the customization requested by users so that the tool is able to meet their specific needs. If a product offers a feature and somebody wants to use it even though they don't know how to use it, it is not acceptable for the solution to charge such users for training on how to use the tool's functionalities.
Head: Open Source Program Office at a financial services firm with 10,001+ employees
Real User
2021-08-26T09:43:15Z
Aug 26, 2021
We are not the primary team to procure this solution. My counterparts in Paris are the only ones who are aware of the pricing. We are only using a few of the licenses because they had acquired several licenses, but I'm not involved in the pricing and the contract negotiations.
CTO at a computer software company with 11-50 employees
Real User
2020-12-15T15:36:41Z
Dec 15, 2020
Black Duck is more suitable if you require a lot of licensing compliance. For smaller organizations, WhiteSource is better because its pricing policies are not really suitable for huge organizations.
There are some features that cost extra but we don't use them because I'm not sure there's added value. The product is not cheap. There are several methods of payment - by product, by scale, or by code-based size. I suggest those buying Black Duck know their code size in relation to the code size that the system registers. This gives a good estimation of how to negotiate the pricing model. If you're buying extremely high capacity, it costs a lot.
Consulting Partner, Cyber Security Delivery - Africa at DeltaGRiC Consulting
Reseller
2019-05-28T07:49:00Z
May 28, 2019
The pricing works either by the number of users or by code size. In the case of code size, they give you unlimited users. For example, if you have two thousand developers but you want a code size of 20GB, then that is what you get. If, however, you have forty developers and a lot of projects then you can say "We'll use forty developers and then we can scan unlimited applications, even if our applications are going to be 3,000GB." Depending on the use case, the cost could range from $10,000 USD to $70,000 USD. It depends on what you are doing. There are no costs in addition to the standard licensing fees, including the academy. If you buy the license then they give you access to their academy, where you can get trained. The integrations are free, and the plug-ins are free.
Organizations use Black Duck for compliance, internal audits, license management, and security, scanning software to identify vulnerabilities, non-compliant code, and dependencies in open-source projects.
Black Duck integrates into CI/CD pipelines and DevSecOps processes, helping multiple industries detect and handle risks associated with open-source usage. Users leverage it for source and binary analysis to ensure security and compliance before software release. Automatic component analysis,...
The price charged by Black Duck is exorbitant. For the features provided by the product, I would not want to pay a high price. There are many other products in the market that offer better features and support services compared to Black Duck at a lower cost. Even though my company is ready to pay extra charges for additional support from Black Duck, if a feature is given in a product and if it needs to be used by a user, then proper training and good documentation should be made available by the solution. If a certain set of users want to purchase a product, I believe that the solution should not charge them extra to teach them how to use the tool. A product can charge for the customization requested by users so that the tool is able to meet their specific needs. If a product offers a feature and somebody wants to use it even though they don't know how to use it, it is not acceptable for the solution to charge such users for training on how to use the tool's functionalities.
Black Duck is a bit expensive.
We have a separate team that takes care of license compliance.
The pricing is a little high. I rate the pricing a seven out of ten. The average price of the product is close to $100.
I rate the product's price one on a scale of one to ten, where one is a high price, and ten is a low price.
We paid for the license on a yearly basis.
It is expensive.
We are not the primary team to procure this solution. My counterparts in Paris are the only ones who are aware of the pricing. We are only using a few of the licenses because they had acquired several licenses, but I'm not involved in the pricing and the contract negotiations.
The cost of the solution is very high. We'd prefer if the product offered a monthly subscription.
Black Duck is more suitable if you require a lot of licensing compliance. For smaller organizations, WhiteSource is better because its pricing policies are not really suitable for huge organizations.
The price is low. It's not an expensive solution.
I'm not sure of what the exact pricing is for the solution. That's not something I handle. My company deals with those aspects of the solution.
The price is quite high because the behavior of the software during the scan is similar to competing products.
There are some features that cost extra but we don't use them because I'm not sure there's added value. The product is not cheap. There are several methods of payment - by product, by scale, or by code-based size. I suggest those buying Black Duck know their code size in relation to the code size that the system registers. This gives a good estimation of how to negotiate the pricing model. If you're buying extremely high capacity, it costs a lot.
The pricing works either by the number of users or by code size. In the case of code size, they give you unlimited users. For example, if you have two thousand developers but you want a code size of 20GB, then that is what you get. If, however, you have forty developers and a lot of projects then you can say "We'll use forty developers and then we can scan unlimited applications, even if our applications are going to be 3,000GB." Depending on the use case, the cost could range from $10,000 USD to $70,000 USD. It depends on what you are doing. There are no costs in addition to the standard licensing fees, including the academy. If you buy the license then they give you access to their academy, where you can get trained. The integrations are free, and the plug-ins are free.