INTRODUCTION
Black Duck Detect 11.3.0 focuses on improving software composition analysis accuracy across modern build ecosystems. For enterprise teams, this directly impacts SBOM quality, vulnerability triage, and release governance.
The update strengthens alignment between how software is built and how dependencies are reported. This reduces discrepancies that delay releases, trigger audit concerns, and create friction between security and engineering teams.
BAZEL MODERNIZATION WITH BZLMOD SUPPORT
Detect now supports both Bzlmod and WORKSPACE configurations with automatic detection:
- Identifies dependency sources across mixed Bazel environments
- Eliminates the need for manual configuration by project type
- Improves consi:stency across monorepos and distributed teams
Enterprise value:
- Consistent SBOM generation across business units
- Reduced audit risk from conflicting scan outputs
- Faster integration during mergers and platform consolidation
Operational impact:
- Platform teams standardize scanning across services
- Engineers avoid misconfigured scans that miss dependencies
CONFIGURATION DEPRECATION AND MIGRATION PLANNING
The shift from detect.bazel.workspace.rules to detect.bazel.dependency.sources introduces a managed deprecation path:
- Existing configurations are mapped automatically
- Full removal planned in the next major release
- Enables phased migration without disrupting pipelines
Business value:
