WhiteSource is now Mend.

LuizMacedo · LuizMacedo · commit 03b8211ddde9 · 2022-07-25T15:33:36.000-05:00
diff --git a/Instructions/Labs/AZ400_M07_L15_Implement_Security_and_Compliance_in_an_Azure_Pipeline.md b/Instructions/Labs/AZ400_M07_L15_Implement_Security_and_Compliance_in_an_Azure_Pipeline.md
@@ -16,17 +16,17 @@ lab:
 
 ## Lab overview
 
-In this lab, you'll use **WhiteSource Bolt with Azure DevOps** to automatically detect vulnerable open source components, outdated libraries, and license compliance issues in your code. You'll use WebGoat, an intentionally insecure web application maintained by OWASP designed to illustrate common web application security issues.
+In this lab, you'll use **Mend Bolt with Azure DevOps** to automatically detect vulnerable open source components, outdated libraries, and license compliance issues in your code. You'll use WebGoat, an intentionally insecure web application maintained by OWASP designed to illustrate common web application security issues.
 
-[WhiteSource](https://www.whitesourcesoftware.com/) is the leader in continuous open source software security and compliance management. WhiteSource integrates into your build process, irrespective of your programming languages, build tools, or development environments. It works automatically, continuously, and silently in the background, checking your open source components' security, licensing, and quality against WhiteSource constantly updated definitive database of open source repositories.
+[Mend](https://www.mend.io/) is the leader in continuous open source software security and compliance management. Mend integrates into your build process, irrespective of your programming languages, build tools, or development environments. It works automatically, continuously, and silently in the background, checking your open source components' security, licensing, and quality against Mend constantly updated definitive database of open source repositories.
 
-WhiteSource provides WhiteSource Bolt, a lightweight open source security and management solution developed specifically for integrating Azure DevOps.
+Mend provides Mend Bolt, a lightweight open source security and management solution developed specifically for integrating Azure DevOps.
 
-> **Note**: WhiteSource Bolt works per project and doesn't offer real-time alert capabilities, which requires a **Full platform**.
+> **Note**: Mend Bolt works per project and doesn't offer real-time alert capabilities, which requires a **Full platform**.
 
-WhiteSource Bolt generally is recommended for larger development teams that want to automate their open source management throughout the entire software development lifecycle (from the repositories to post-deployment stages) and across all projects and products.
+Mend Bolt generally is recommended for larger development teams that want to automate their open source management throughout the entire software development lifecycle (from the repositories to post-deployment stages) and across all projects and products.
 
-Azure DevOps integration with WhiteSource Bolt will enable you to:
+Azure DevOps integration with Mend Bolt will enable you to:
 
 - Detect and remedy vulnerable open source components.
 - Generate comprehensive open source inventory reports per project or build.
@@ -37,8 +37,8 @@ Azure DevOps integration with WhiteSource Bolt will enable you to:
 
 After you complete this lab, you will be able to:
 
-- Activate WhiteSource Bolt.
-- Run a build pipeline and review the WhiteSource security and compliance report.
+- Activate Mend Bolt.
+- Run a build pipeline and review the Mend security and compliance report.
 
 ## Estimated timing: 45 minutes
 
@@ -50,37 +50,37 @@ In this exercise, you will set up the prerequisites for the lab, which consist o
 
 #### Task 1: Create and configure the team project
 
-In this task, you will use Azure DevOps Demo Generator to generate a new project based on the [WhiteSource-Bolt template](https://azuredevopsdemogenerator.azurewebsites.net/?name=WhiteSource-Bolt&templateid=77362)
+In this task, you will use Azure DevOps Demo Generator to generate a new project based on the [Mend-Bolt template](https://azuredevopsdemogenerator.azurewebsites.net/?name=Mend-Bolt&templateid=77362)
 
 1. On your lab computer, start a web browser and navigate to [Azure DevOps Demo Generator](https://azuredevopsdemogenerator.azurewebsites.net). This utility site will automate the process of creating a new Azure DevOps project within your account that is prepopulated with content (work items, repos, etc.) required for the lab.
 
     > **Note**: For more information on the site, see <https://docs.microsoft.com/en-us/azure/devops/demo-gen>.
 
 1. Click **Sign in** and sign in using the Microsoft account associated with your Azure DevOps subscription.
 1. If required, on the **Azure DevOps Demo Generator** page, click **Accept** to accept the permission requests for accessing your Azure DevOps subscription.
-1. On the **Create New Project** page, in the **New Project Name** textbox, type **WhiteSource Bolt**, in the **Select organization** dropdown list, select your Azure DevOps organization, and then click **Choose template**.
-1. In the list of templates, in the toolbar, click **DevOps Labs**, select the **WhiteSource Bolt** template and click **Select Template**.
-1. Back on the **Create New Project** page, if prompted to install a missing extension, select the checkbox below the **WhiteSource Bolt** and click **Create Project**.
+1. On the **Create New Project** page, in the **New Project Name** textbox, type **Mend Bolt**, in the **Select organization** dropdown list, select your Azure DevOps organization, and then click **Choose template**.
+1. In the list of templates, in the toolbar, click **DevOps Labs**, select the **Mend Bolt** template and click **Select Template**.
+1. Back on the **Create New Project** page, if prompted to install a missing extension, select the checkbox below the **Mend Bolt** and click **Create Project**.
 
     > **Note**: Wait for the process to complete. This should take about 2 minutes. In case the process fails, navigate to your DevOps organization, delete the project, and try again.
 
 1. On the **Create New Project** page, click **Navigate to project**.
 
-### Exercise 1: Implement Security and Compliance in an Azure Pipeline using WhiteSource Bolt
+### Exercise 1: Implement Security and Compliance in an Azure Pipeline using Mend Bolt
 
-In this exercise, leverage WhiteSource Bolt to scan the project code for security vulnerabilities and licensing compliance issues, and view the resulting report.
+In this exercise, leverage Mend Bolt to scan the project code for security vulnerabilities and licensing compliance issues, and view the resulting report.
 
-#### Task 1: Activate WhiteSource Bolt
+#### Task 1: Activate Mend Bolt
 
-In this task, you will activate WhiteSource Bolt in the newly generated Azure Devops project.
+In this task, you will activate Mend Bolt in the newly generated Azure Devops project.
 
-1. On your lab computer, in the web browser window displaying the Azure DevOps portal with the **WhiteSource Bolt** project open, **in the vertical menu bar** at the far left of the Azure DevOps portal, click **Pipelines**  section and  **WhiteSource Bolt** option (in the vertical menu bar under "Deployment Groups" option).
-1. On the **You're almost there** pane, provide your **Work Email** and **Company Name**, in the **Country** dropdown list, select the entry representing your country, and click *Get Started* button to start using the *Free* version of WhiteSource Bolt. This will automatically open a new browser tab displaying the **Get Started With Bolt** page.
-1. Switch back to the web browser tab displaying the Azure DevOps portal and verify that the **You are using a FREE version of WhiteSource Bolt** is displayed.
+1. On your lab computer, in the web browser window displaying the Azure DevOps portal with the **Mend Bolt** project open, **in the vertical menu bar** at the far left of the Azure DevOps portal, click **Pipelines**  section and  **Mend Bolt** option (in the vertical menu bar under "Deployment Groups" option).
+1. On the **You're almost there** pane, provide your **Work Email** and **Company Name**, in the **Country** dropdown list, select the entry representing your country, and click *Get Started* button to start using the *Free* version of Mend Bolt. This will automatically open a new browser tab displaying the **Get Started With Bolt** page.
+1. Switch back to the web browser tab displaying the Azure DevOps portal and verify that the **You are using a FREE version of Mend Bolt** is displayed.
 
 #### Task 2: Trigger a build
 
-In this task, you will trigger a build within your Java code-based Azure DevOps project. You will use **WhiteSource Bolt** extension to identify vulnerable components present in this code.
+In this task, you will trigger a build within your Java code-based Azure DevOps project. You will use **Mend Bolt** extension to identify vulnerable components present in this code.
 
 1. On your lab computer, in the vertical menu bar on the left side, navigate to the **Pipelines** section, click **WhileSourceBolt**, click **Run pipeline** and then, on the **Run pipeline** pane, click **Run**.
 1. On the **Summary** tab of the build pane, in the **Jobs** section, click **Phase 1** and monitor the progress of the build process.
@@ -91,26 +91,26 @@ In this task, you will trigger a build within your Java code-based Azure DevOps
     | ---- | ------ |
     | ![npm](images/m07/npm.png) **npm** |  Installs and publishes npm packages required for the build |
     | ![maven](images/m07/maven.png) **Maven** |  builds Java code with the provided pom xml file |
-    | ![whitesourcebolt](images/m07/whitesourcebolt.png) **WhiteSource Bolt** |  scans the code in the provided working directory/root directory to detect security vulnerabilities, problematic open source licenses |
+    | ![Mendbolt](images/m07/whitesourcebolt.png) **Mend Bolt** |  scans the code in the provided working directory/root directory to detect security vulnerabilities, problematic open source licenses |
     | ![copy-files](images/m07/copy-files.png) **Copy Files** |  copies the resulting JAR files from the source to the destination folder using match patterns |
     | ![publish-build-artifacts](images/m07/publish-build-artifacts.png) **Publish Build Artifacts** |  publishes the artifacts produced by the build |
 
 1. Once the build completes, navigate back to the **Summary** tab and review **Tests and coverage** section.
 
 #### Task 3: Analyze Reports
 
-In this task, you will review the WhiteSource Bolt build report.
+In this task, you will review the Mend Bolt build report.
 
-1. On the build pane, click the **WhiteSource Bolt Build Report** tab header and wait for the report to fully render.
-1. While on the **WhiteSource Bolt Build Report** tab, verify that WhiteSource Bolt automatically detected Open Source components in the software including transitive dependencies and their respective licenses.
-1. While on the **WhiteSource Bolt Build Report** tab, review the Security dashboard, displaying the vulnerabilities discovered during the build.
+1. On the build pane, click the **Mend Bolt Build Report** tab header and wait for the report to fully render.
+1. While on the **Mend Bolt Build Report** tab, verify that Mend Bolt automatically detected Open Source components in the software including transitive dependencies and their respective licenses.
+1. While on the **Mend Bolt Build Report** tab, review the Security dashboard, displaying the vulnerabilities discovered during the build.
 
     > **Note**: The report displays the list of all vulnerable open source components, including **Vulnerability Score**, **Vulnerable Libraries**, and **Severity Distribution**. You can identify the opensource license distribution by leveraging a detailed view of all components and links to their metadata and licensed references.
 
-1. While on the **WhiteSource Bolt Build Report** tab, scroll down to the **Outdated Libraries** section and review its content.
+1. While on the **Mend Bolt Build Report** tab, scroll down to the **Outdated Libraries** section and review its content.
 
-    > **Note**: WhiteSource Bolt tracks outdated libraries in the project, providing library details, links to newer versions, and remediation recommendations.
+    > **Note**: Mend Bolt tracks outdated libraries in the project, providing library details, links to newer versions, and remediation recommendations.
 
 ## Review
 
-In this lab, you will use **WhiteSource Bolt with Azure DevOps** to automatically detect vulnerable open source components, outdated libraries, and license compliance issues in your code.
+In this lab, you will use **Mend Bolt with Azure DevOps** to automatically detect vulnerable open source components, outdated libraries, and license compliance issues in your code.
