Hi. This is Tomas with FossID with our latest product announcement. It’s no surprise that open source has exploded in recent years. There are components to satisfy a wide range of use cases, and where there aren’t, developers can turn to sites like Stack Overflow or AI-powered coding tools to fill gaps in their creative process. We are witnessing a golden age of development powered by open source and AI. Organizations that are empowering their developers with these tools rely on Software Composition Analysis to ensure the security and compliance of their software supply chain. And while providing attribution for package manager managed open source is simple, tools to identify and provide attribution for code snippets from Stack Overflow or created by a generative AI coding assistant trained on open source can be difficult to adopt at scale due to the process of validating results, which often requires time and expertise.
But FossID is changing that. FossID Workbench 24.2 introduces ID Assist, a set of capabilities to help users sort through the noise and pinpoint the correct match fast and accurately.
The first version of ID Assist introduces two new features. First, Advanced Match Scoring that ranks and prioritizes findings based on the new ID assist scoring algorithm.
Second, Intelligent Match Filtering that uses code language specific class occasion algorithms to report only relevant findings, and this is just the start.
Our vision for ID Assist is to harness our audit team’s years of software auditing expertise to make our Software Composition Analysis tool smarter. So, we can help our users more easily identify the open source requiring attribution, resulting in faster, easier audits. We are excited for this new era of FossID, now powered by ID Assist, and we invite you to try it out for yourself.