Events on SBOMs, software vulnerabilities, FOSS licensing, and more.

Sign up for an upcoming webinar and other events on important topics related to Free and Open Source Software and Software Composition Analysis, nexB products like DejaCode, and AboutCode projects like ScanCode and VulnerableCode.

Recordings of previous webinars, conference talks, and other events from the nexB team are also available to watch.

Upcoming

laptop
  • Webinar
  • THU
  • FEB 02
  • AT 9AM PST / 5PM CET

SBOMs and Software Vulnerabilities: Leveraging SCA for Software Supply Chain Security

laptop
  • Webinar
  • THURSDAY, FEBRUARY 02, 2023
  • AT 9AM PST / 5PM CET
nexB co-founder and CEO Michael Herzog will discuss the various SBOM specifications and approaches to SCA for analyzing software vulnerabilities and licenses. He will also explain how ScanCode, VulnerableCode, and DejaCode fit together to provide a multi-faceted platform to manage software supply chain risks.
Register
conference
  • Conference
  • FRI
  • FEB 03
  • AT 9AM CET

Workshop on FOSS license and security compliance tools at FOSDEM

conference
  • Conference
  • FRIDAY, FEBRUARY 03, 2023
  • AT 9AM CET

This one-day event before FOSDEM is to exchange ideas, share plans, and coordinate collaborations around FOSS tools for software provenance detection, license detection and compliance, code scanning, package dependency analysis, container analysis, SBOM creation and consumption, and license or vulnerability databases.

Whether you are a developer or user interested in Software Supply Chain and SBOMs, a FOSS license-savvy lawyer, a compliance or security analyst, an OSPO member, or just interested in open source license and security compliance tools; you are invited to join!

Register
laptop
  • Webinar
  • TUE
  • FEB 07
  • AT 9AM CET

Technical deep dive into VulnTotal

laptop
  • Webinar
  • TUESDAY, FEBRUARY 07, 2023
  • AT 9AM CET

Inspired by the VirusTotal multi-scanner virus scanning service, the VulnTotal project cross-validates the vulnerability coverage of VulnerableCode against other publicly available vulnerability check tools and databases. For instance, a package may be reported as vulnerable by one tool or database but not by another. We can gradually work with these tool providers to keep each other apprised about newly discovered vulnerabilities, making FOSS more secure.

Join this webinar with the Linux Foundation's OpenChain Project to learn more about VulnTotal and VulnerableCode.

Register
laptop
  • Webinar
  • THU
  • FEB 09
  • AT 9AM PST / 5PM CET

Deep dive into VulnerableCode v31

laptop
  • Webinar
  • THURSDAY, FEBRUARY 09, 2023
  • AT 9AM PST / 5PM CET
With our latest release, we’ve made many improvements to help you find FOSS vulnerabilities, and improve overall FOSS security. In this webinar, nexB co-founder and CTO Philippe Ombredanne will demonstrate how to best use this new FOSS tool to automate search for FOSS security vulnerabilities.
Register
  • Webinar:
Scanning Docker images with ScanCode.io
How to use ScanCode.io for Software Composition Analysis (SCA) with Docker images.
34 MINUTE VIDEO

Videos

Watch recorded webinars and conference talks to learn more about FOSS, SCA, and software like ScanCode, VulnerableCode and DejaCode.

Watch more

Ensuring software license compliance can be difficult.

We can help.

Start scanning your code with ScanCode
Automate FOSS compliance with DejaCode
Contact us for help with any questions