Labrador SCA

Labrador SCA
SW Composition Analysis

The real problem in using open source,

is that the open source that enterprises use is often modified or has complex dependencies that are difficult to verify, and it is tricky to do that verification job manually, making automation of Software Composition Analysis more essential.

To solve this problem,

Labrador SCA (Software Composition Analysis) helps keep your software safe by automatically checking license issues and vulnerabilities from your organization’s every source code, binary and container software.

Analysis Target

Source Code

Binary

Container

HOW Labrador SCA Works

Step 1 : Input

Through cloud or on-premise services, the software source code, zip file or CLI will be analyzed by the Labrador Scanner.
Step 2 : Detect

Labrador Engine extracts all the necessary information for an accurate SBOM. With the CENTRIS© & VUDDY© technologies, vulnerabilities and license violations are detected up to 93% accurately.
Step 3 : Correct

Finally, through the Organization Policy Management system, vulnerabilities and licenses issues can be corrected with patch backporting and license management.

Introducing Labrador SCA's features

In-Depth(3-Layer) Analysis

Over 90% accuracy with 3-layer analysis of component/file/function level
Patented technology VUDDY

Zero-Day vulnerability detection
Patented technology XVDB

AI Based Data Verification

Providing advanced analysis by Labrador AI applied to vulnerability and license detection

Labrador Patch Priority (LPP)

Showing priorities by severity
Pinpoint patch backporting infomation

LPP: Labrador Patch Priorities

* LPP: Labrador Patch Priorities

Introducing Labrador SCA's key features

SBOM Generation

Software Bill of Materials (SBOM) is a list of every component in a software, and Labrador provides SBOM in international standard formats of SPDX and CycloneDX.

Pinpoint Patch Backporting

LPP vulnerability patch information Pinpoint patch backporting to fix specific vulnerability

Organization Customized Vulnerability Management

Applying organization’s own policy customized by customer to manage vulnerabilities more efficiently

User-friendly Analysis Methods

Various analysis methods for customer’s environment such as CLI, Repository URL, ZIP Upload

SDLC & CI/CD Integration

Integrated with SDLC and CI/CD pipeline to scan both SaaS and On-premise environment

Open Source Governance Management

Collecting open source license and issue information to eliminate compliance risks and automatically generate policy document

Support & Integration

150+ languages, 10+ package managers, 10+ CI/CD tool support
Labrador Appliance device support for on-premise customers

Labrador Appliance Device

Labrador SCA
Start managing licenses and checking open source vulnerabilities

If you have a question or a comment regarding our website, services or programs please fill in the contact form

Accurately find OSS vulnerabilities and license risks, and fix them easily with Labrador SCA

Labrador SCA SW Composition Analysis