Labrador SCA

Accurately find OSS vulnerabilities and license risks,
and fix them easily with Labrador SCA
Get a Demo

Labrador SCA
SW Composition Analysis

The real problem in using open source,

is that the open source that enterprises use is often modified or has complex dependencies that are difficult to verify, and it is tricky to do that verification job manually, making automation of Software Composition Analysis more essential.

To solve this problem,

Labrador SCA (Software Composition Analysis) helps keep your software safe by automatically checking license issues and vulnerabilities from your organization’s every source code, binary and container software.

소프트웨어 구성 분석 대체이미지

Analysis Target

Source Code

Binary

Container

HOW Labrador SCA Works

  • Step 1 : Input

    Through cloud or on-premise services, the software source code, zip file or CLI will be analyzed by the Labrador Scanner.

  • Step 2 : Detect

    Labrador Engine extracts all the necessary information for an accurate SBOM. With the CENTRIS© & VUDDY© technologies, vulnerabilities and license violations are detected up to 93% accurately.

  • Step 3 : Correct

    Finally, through the Organization Policy Management system, vulnerabilities and licenses issues can be corrected with patch backporting and license management.

icon4

Introducing Labrador SCA's features

자산 4

In-Depth(3-Layer) Analysis

Over 90% accuracy with 3-layer analysis of component/file/function level
Patented technology VUDDY

Zero-Day vulnerability detection
Patented technology XVDB

fghfgh

AI Based Data Verification

Providing advanced analysis by Labrador AI applied to vulnerability and license detection

자산 2

Labrador Patch Priority (LPP)

Showing priorities by severity
Pinpoint patch backporting infomation

LPP: Labrador Patch Priorities

LPP

* LPP: Labrador Patch Priorities

주요기능 아이콘

Introducing Labrador SCA's key features

SBOM Generation

Software Bill of Materials (SBOM) is a list of every component in a software, and Labrador provides SBOM in international standard formats of SPDX and CycloneDX.

Pinpoint Patch Backporting

LPP vulnerability patch information Pinpoint patch backporting to fix specific vulnerability

Organization Customized Vulnerability Management

Applying organization’s own policy customized by customer to manage vulnerabilities more efficiently

User-friendly Analysis Methods

Various analysis methods for customer’s environment such as CLI, Repository URL, ZIP Upload

SDLC & CI/CD Integration

Integrated with SDLC and CI/CD pipeline to scan both SaaS and On-premise environment

Open Source Governance Management

Collecting open source license and issue information to eliminate compliance risks and automatically generate policy document

Support & Integration

  • 150+ languages, 10+ package managers, 10+ CI/CD tool support
  • Labrador Appliance device support for on-premise customers

Labrador Appliance Device

Labrador SCA
Start managing licenses and checking open source vulnerabilities

If you have a question or a comment regarding our website, services or programs please fill in the contact form

Product Contact