Events on SBOMs, software vulnerabilities, FOSS licensing, and more.
Sign up for an upcoming webinar and other events on important topics related to Free and Open Source Software and Software Composition Analysis, nexB products like DejaCode, and AboutCode projects like ScanCode and VulnerableCode.
Recordings of previous webinars, conference talks, and other events from the nexB team are also available to watch.
This one-day event before FOSDEM is to exchange ideas, share plans, and coordinate collaborations around FOSS tools for software provenance detection, license detection and compliance, code scanning, package dependency analysis, container analysis, SBOM creation and consumption, and license or vulnerability databases.
Whether you are a developer or user interested in Software Supply Chain and SBOMs, a FOSS license-savvy lawyer, a compliance or security analyst, an OSPO member, or just interested in open source license and security compliance tools; you are invited to join!
Inspired by the VirusTotal multi-scanner virus scanning service, the VulnTotal project cross-validates the vulnerability coverage of VulnerableCode against other publicly available vulnerability check tools and databases. For instance, a package may be reported as vulnerable by one tool or database but not by another. We can gradually work with these tool providers to keep each other apprised about newly discovered vulnerabilities, making FOSS more secure.
Join this webinar with the Linux Foundation's OpenChain Project to learn more about VulnTotal and VulnerableCode.
Watch recorded webinars and conference talks to learn more about FOSS, SCA, and software like ScanCode, VulnerableCode and DejaCode.