nexB on Software Bill of Materials and Software Composition Analysis We’ve never seen anything that raises the urgency for Software Composition Analysis like this. 5 MINUTE READ
SCA the FOSS Way – Part 1: Software Composition Analysis SCA is critical for modern software development – for both proprietary and open source software. 13 MINUTE READ
Do you really need to update the copyright each new year? Developers update their project’s copyright notices at each new year, but why is it needed? 3 MINUTE READ
VulnerableCode v31 expands vulnerability coverage VulnTotal cross-validates vulnerability coverage across other checking tools and databases. 2 MINUTE READ
There and back again: A software versioning story One software version control to rule them (modern software development) all? 10 MINUTE READ
Providing Clarity on License Clarity Scoring in ScanCode When automating SCA, License Clarity Scoring helps determine if scan results require more review. 3 MINUTE READ
VulnerableCode: Find FOSS vulnerabilities, improve FOSS security Automate finding FOSS component security vulnerabilities, using open data and FOSS tools. 3 MINUTE READ
VulnerableCode v30 publicly available with new UI and API access VulnerableCode is as a free and open database of open source software package vulnerabilities. 4 MINUTE READ
Google Summer of Code: Open source SCA tools with AboutCode nexB is a mentor organization for student developers to work on open source development. 2 MINUTE READ
nexB on GPL 3.0 and Related License Compliance Issues The severity of Copyleft license-related issues depends on the context of OSS license policies. 8 MINUTE READ
Using Copyleft-licensed software components in a Java application Key considerations while using Copyleft-licensed software components in a Java application. 4 MINUTE READ
Importance of snippet matching for software provenance analysis Is snippet matching worth the resources involved for FOSS compliance? 5 MINUTE READ
How much documentation for a software project? There is never enough documentation! Docs encourage users to discover more. 1 MINUTE READ
What are the membership levels in the Linux Foundation? Open Source Stack Exchange answers questions about the business of open source. 1 MINUTE READ
Open Source Stack Exchange: Can a team be a copyright holder? Concise copyright statements are better for both your team and your users. 1 MINUTE READ
Is a page that contains Javascript considered redistribution? JavaScript in a web page is code redistributed to whoever loads this page in their browser. 1 MINUTE READ
Wix vs. WordPress and what we can learn about the GPL “If I were being honest, I’d say that Wix copied WordPress without attribution…” 3 MINUTE READ
Software Dependencies: A not-too-technical guide Larger software systems and products are assembled from many software components. 7 MINUTE READ
What are the Benefits of Using Open Source Software? Free/Libre Open Source Software (FLOSS) refers to freedom (libre), not price. 2 MINUTE READ
What is Open Source Software (OSS)? And Is It Free to Use? Open source software (OSS) is software composed of source code open to the general public. 3 MINUTE READ
Best Practices for Open Source Software (OSS) Attribution What is actually legally required? What is the best way to meet FOSS attribution obligations? 9 MINUTE READ
SCA the FOSS Way – Part 1: Software Composition Analysis SCA is critical for modern software development – for both proprietary and open source software. 13 MINUTE READ
Do you really need to update the copyright each new year? Developers update their project’s copyright notices at each new year, but why is it needed? 3 MINUTE READ
VulnerableCode v31 expands vulnerability coverage VulnTotal cross-validates vulnerability coverage across other checking tools and databases. 2 MINUTE READ
There and back again: A software versioning story One software version control to rule them (modern software development) all? 10 MINUTE READ
Providing Clarity on License Clarity Scoring in ScanCode When automating SCA, License Clarity Scoring helps determine if scan results require more review. 3 MINUTE READ
VulnerableCode: Find FOSS vulnerabilities, improve FOSS security Automate finding FOSS component security vulnerabilities, using open data and FOSS tools. 3 MINUTE READ
VulnerableCode v30 publicly available with new UI and API access VulnerableCode is as a free and open database of open source software package vulnerabilities. 4 MINUTE READ
Google Summer of Code: Open source SCA tools with AboutCode nexB is a mentor organization for student developers to work on open source development. 2 MINUTE READ
nexB on Software Bill of Materials and Software Composition Analysis We’ve never seen anything that raises the urgency for Software Composition Analysis like this. 5 MINUTE READ
nexB on GPL 3.0 and Related License Compliance Issues The severity of Copyleft license-related issues depends on the context of OSS license policies. 8 MINUTE READ
Using Copyleft-licensed software components in a Java application Key considerations while using Copyleft-licensed software components in a Java application. 4 MINUTE READ
Importance of snippet matching for software provenance analysis Is snippet matching worth the resources involved for FOSS compliance? 5 MINUTE READ
How much documentation for a software project? There is never enough documentation! Docs encourage users to discover more. 1 MINUTE READ
What are the membership levels in the Linux Foundation? Open Source Stack Exchange answers questions about the business of open source. 1 MINUTE READ
Open Source Stack Exchange: Can a team be a copyright holder? Concise copyright statements are better for both your team and your users. 1 MINUTE READ
Is a page that contains Javascript considered redistribution? JavaScript in a web page is code redistributed to whoever loads this page in their browser. 1 MINUTE READ
Wix vs. WordPress and what we can learn about the GPL “If I were being honest, I’d say that Wix copied WordPress without attribution…” 3 MINUTE READ
Software Dependencies: A not-too-technical guide Larger software systems and products are assembled from many software components. 7 MINUTE READ
What are the Benefits of Using Open Source Software? Free/Libre Open Source Software (FLOSS) refers to freedom (libre), not price. 2 MINUTE READ
What is Open Source Software (OSS)? And Is It Free to Use? Open source software (OSS) is software composed of source code open to the general public. 3 MINUTE READ