SCA
The 2025 OSSRA report uncovers answers to common open source questions
Get answers to some of today's most common open source questions by examining the data in the 2025 Open Source Security Risk and Analysis (OSSRA) report.The post The 2025 OSSRA report uncovers ...
Top open source licenses and legal risk for developers
Explore top open source licenses and understand their legal risks. A comprehensive guide for developers navigating the open source software landscape.The post Top open source licenses and legal risk for developers appeared ...
Six takeaways from the 2025 “Open Source Security and Risk Analysis” report
Get insights into the open source landscape from the latest OSSRA report. Learn about open source software security risk trends and management strategies.The post Six takeaways from the 2025 “Open Source Security ...
Understanding the DeepSeek model license: Balancing openness and responsibility
Explore the DeepSeek model license and the potential license compliance implications that come with using it in your applications.The post Understanding the DeepSeek model license: Balancing openness and responsibility appeared first on ...
Analyze AI-Generated Code with the Black Duck Snippet API
Black Duck Snippet Analysis is available via API as a more scalable solution for analyzing AI-generated code for open source license compliance.The post Analyze AI-Generated Code with the Black Duck Snippet API ...
Forrester recognizes Black Duck as a Leader in software composition analysis
Explore why Forrester recognizes Black Duck as a leader in Software Composition Analysis. Discover our top scores in Current Offering and Strategy.The post Forrester recognizes Black Duck as a Leader in software ...
Understanding generative AI risks in software development
Generative AI risks share the same concerns as human-written code. Learn how Black Duck can help you managing license, quality, and security in your AI-generated code.The post Understanding generative AI risks in ...
Addressing cloud-native app development challenges with scalable security tools
Learn about cloud-native trends, challenges, and security solutions for organizations shifting to cloud-based environments.The post Addressing cloud-native app development challenges with scalable security tools appeared first on Blog ...
Faster, better, stronger application security for developers in the IDE
New enhancements from Code Sight enable developers to customize security scans, prioritize new issues, and close feedback loops without leaving the IDE.The post Faster, better, stronger application security for developers in the ...
Will We Survive The Transitive Vulnerability Locusts
Understanding and Mitigating the Risks of Transitive Vulnerabilities in Application Security At OX Security, our mission is to eliminate manual AppSec processes. Our latest research, presented at Black Hat 2024, highlights a ...
