Most applications contain open source code, which can expose companies to risks if left unchecked. Make the most of your…
Understand the three common scenarios for why unlicensed open source is found in the codebase and the implications of it…
Open source projects can become victims of their own success. What can developers do to secure their open source software?…
Learn what OpenChain is, how it works, and how companies around the world are using it to secure their software…
Hear about the state of open source in our Red Hat partner webinar, discover our approach to threat modeling, and…
In this week’s webinars, we’ll talk about binary scanning techniques and challenges, and how to reduce your risk with software…
When you don’t have any time or resources to spare, Black Duck Audits provide a deep, accurate, rapid vulnerability assessment,…
This Spring, the National Institute of Standards and Technology (NIST), released updated recommendations (.pdf) to improve software resilience against vulnerabilities.…
If you don’t have an SCA tool, a software audit can give you a bill of materials needed for product…
The NVD is a good source for open source vulnerability data. But with an average 27-day reporting delay, it shouldn’t…