Keep your project secure with CoPilot
Black Duck CoPilot helps you find, fix, and avoid vulnerable dependencies in your open source projects
Developing software isn’t easy, and you want to spend your time delivering stable products with cool features. Security vulnerabilities can put you and your users at risk. Black Duck CoPilot makes monitoring security a breeze, so you can worry less and code more.
Get a complete listing of your project’s open-source dependencies Find out the security risk of every component, on every branch Know if you’re adding a vulnerable component - before you merge it
CoPilot is powered by Black Duck™ - a complete open source management solution, and Black Duck KnowledgeBase™ - the industry’s most comprehensive database of open source project information. To learn more visit
Use your favorite platforms
We’re expanding our platform support all the time.
CI Platforms
Travis CICircle CI (2.0)AppVeyorAzure PipelinesGitHub CI/CD (Beta)
JavaScalaC#PythonJavaScript (Node.js)RubyRSwift/Objective-CiOS (Swift)
If you have a suggestion for other platforms we should support, please let us know on our forum.