Phil Odence, Author at Security Boulevard

Strange but true software licenses: No foolin’

Phil Odence | April 1, 2026 | "M&A Due Diligence", "OSS License Compliance", Awareness

Explore the strangest open source licenses in the Black Duck KnowledgeBase—from beverage requirements to profane restrictions. Why license compliance matters.The post Strange but true software licenses: No foolin’ appeared first on Blog ... Read More

Blog

Evaluating AI powered applications: A new frontier for M&A software due diligence

Phil Odence | February 17, 2026

Learn how to evaluate AI-powered applications during M&A and investment deals. Master the 4 pillars of AI due diligence: technical footprint, legal compliance, quality assurance, and security risks for machine learning systems.The post Evaluating AI powered applications: A new frontier for M&A software due diligence appeared first on Blog ... Read More

Blog

The Importance of a Third-Party Due Diligence Perspective on Code Risk

Phil Odence | August 4, 2025 | "M&A Due Diligence", "Security Consulting and Services", Awareness

Understand how third-party due diligence can help acquirers assess code risk during mergers and acquisitions. Learn about the limitations of tools and the value of expert audits."The post The Importance of a Third-Party Due Diligence Perspective on Code Risk appeared first on Blog ... Read More

Blog

Understanding generative AI risks in software development

Phil Odence | October 24, 2024 | "OSS License Compliance", "Secure the Software Supply Chain", "Security Consulting and Services", MA, SCA, software supply chain security

Generative AI risks share the same concerns as human-written code. Learn how Black Duck can help you managing license, quality, and security in your AI-generated code.The post Understanding generative AI risks in software development appeared first on Blog ... Read More

Blog

Once and future code snippets: How AI reignites risk

Phil Odence | July 24, 2024 | "Secure the Software Supply Chain", MA, SCA

Generative AI tools can introduce potential license and security risks in the code they write. Learn how to address these risks with Black Duck SCA.The post Once and future code snippets: How AI reignites risk appeared first on Blog ... Read More

Blog

Five types of software licenses you need to understand

Phil Odence | March 21, 2024 | "OSS License Compliance", "Software Integrity"

Explore the world of software licenses with our comprehensive guide. We break down the five common types and their obligations for code reuse.The post Five types of software licenses you need to understand appeared first on Software Security ... Read More

Software Security

The parallels of AI and open source in software development

Phil Odence | August 25, 2023 | M&A and OSS license compliance, Mergers and acquisitions due diligence, Open Source and Software Supply Chain Risks, Open source license compliance

Parallels between the history of open source and the rise of AI in software development can teach us valuable AppSec lessons ... Read More

Application Security Blog

The rise of AI in software development

Phil Odence | August 11, 2023 | M&A and OSS license compliance, Mergers and acquisitions due diligence, Open Source and Software Supply Chain Risks, Open source license compliance

Generative artificial intelligence tools are changing the world and the software development landscape significantly. Our webinar series will help you understand how ... Read More

Application Security Blog

Connecting the dots: Development + business risk + due diligence

Phil Odence | May 26, 2023 | M&A and OSS license compliance, Mergers and acquisitions due diligence, Open Source and Software Supply Chain Risks, Open source license compliance

Organizations should emphasize processes that connect the dots between software development practices, business risk and due diligence activities ... Read More

Application Security Blog

Static analysis + penetration testing = More than the sum of their parts

Phil Odence | March 10, 2023 | Mergers and acquisitions due diligence, Security News and Research

Static analysis + penetration testing delivers a powerful punch in any software due-diligence effort ... Read More

Application Security Blog

Phil Odence
Blog

Strange but true software licenses: No foolin’

Evaluating AI powered applications: A new frontier for M&A software due diligence

The Importance of a Third-Party Due Diligence Perspective on Code Risk

Understanding generative AI risks in software development

Once and future code snippets: How AI reignites risk

Five types of software licenses you need to understand

The parallels of AI and open source in software development

The rise of AI in software development

Connecting the dots: Development + business risk + due diligence

Static analysis + penetration testing = More than the sum of their parts

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On