Interview with Ibrahim Haddad on Software Composition Analysis Tools
Ibrahim Haddad is a well-known profile in the global open source community. His career started in the late nineties as a software developer focusing on open source software. Over two decades later, he is now Vice President of Strategic Programs at the Linux...
Guaranteed COVID-19-free due diligence with FossID
COVID-19 has had a great impact on M&A transactions and technical due diligence. Not only on the volume itself, but in the way that they are conducted. Quarantines and various measures of pandemic stopping regulations and activities have forced companies to...
Leveraging ORT from a commercial code scanner
FossID and OSS Review Toolkit (ORT) have recently started a collaboration to integrate ORT into FossID and make the FossID scanner available as a scanner in ORT in the future. We hope this collaboration will result in Software Composition Analysis tooling that better...
The top reasons why knowledge base size matters
A key to useful and accurate open source compliance and security is a powerful software analysis tool, relying on a comprehensive knowledge base. The FossID knowledge base offers a commercial representation of the latest innovation in open source software, and...
Improved performance and results with FossID’s latest product update
We recently announced a significant product update that encompasses improvements both in the visible GUI elements like the FossID Web Application, but also in underlying back-end components. The update brings new functionality, improvements and bug fixes to new and...
FOSSID in Strategic Open Source Software Governance Partnership with BearingPoint
BearingPoint offers their customers modular FOSS services, which include streamlined processes and infrastructure to deploy, manage, and govern software throughout the whole product lifecycle. BearingPoint’s FOSS analysis services provide a timely and confidential...
Unique Open Source Audit Method for Maximum Confidentiality, Ease, and Accuracy
Part of the FOSSID business relates to pure services based on our software scanner. Using our own tools, we help customers with open source audits, finding the prevalence of open source components, files, and snippets and identifying their origin and adhering...
FOSSID Takes Open Source Vulnerability Detection to New Levels
The FOSSID vulnerability snippet finder detects and identifies the actual lines of code that introduce vulnerabilities in open source and proprietary software Traditional Software Composition Analysis (SCA) tools and software scanners typically identify open source...
Webinar with GTC Law and FOSSID, March 26, 9:30am EST
March 26th 2020, at 9:30 am EST we are hosting a webinar together with Leon Schwarts from GTC Law and Jon Aldama from FOSSID. Read the abstract below and click the link below to head over to the webinar page to register!Open source software and code snippets: the...
Why Should You Care About the Discoverability of Source Code Snippets?
There is a wide variation in functionality across currently available Software Composition Analysis tools, ranging from compliance and security vulnerability features to managing the compliance process and integrating checks across the development process. Some tools...
Open Source Software Compliance and Security Vendor FOSSID Launches in South Korea
FOSSID, the Open Source and Security Vulnerability Management Pioneer, Launches Partnership with OSBC, the Leading Open Source Company in South Korea, to Address South Korean Market Needs SEOUL, KOREA, February 4, 2020 -- FOSSID, the Open Source and Security...
Best Practices for Enterprise Open Source Compliance
What is the secret to staying on top of your open source compliance efforts? The simple answer is to have good practices implemented, and in this article we list nine best practices that will have a direct impact on your efforts. If you already have these practices...
4 Open Source Compliance Challenges for the Software Industry
While planning the short- and long-term goals for your business, there are four open source compliance challenges that the software industry at large needs to address; Scale, Accuracy, Cost and Speed. Depending on your company size, your open source policies, your...
FOSSID at the Open Compliance Summit 2019
One of the events closest to our hearts is the Open Compliance Summit in Tokyo, December 17-18, 2019. This year we are proud to be Gold sponsors, simply because we are so excited about the topics to be discussed, and the impressive lineup of speakers and attendees. We...
Interview with Shane Coughlan, GM of OpenChain, Linux Foundation
Shane Coughlan leads the OpenChain project at the Linux Foundation. We managed to steal a few minutes of his time to talk about OpenChain, open source, compliance and security. But first, a brief backgrounder on Shane. Shane has been involved in open source in one way...