Watch videos on SCA, ScanCode, SBOMs, software licensing, FOSS compliance, VulnerableCode, and more.

Video:
OpenChain

VulnTotal: Validate vulnerability coverage of VulnerableCode

Uniquely collates and cross-references FOSS vulnerability data from multiple sources.

29 MINUTE VIDEO

Webinar:

Finding FOSS software vulnerabilities with FOSS tools

VulnerableCode’s benefit: better security of software applications with open tools and data for all.

51 MINUTE VIDEO

Webinar:

Scanning Docker images with ScanCode.io

How to use ScanCode.io for Software Composition Analysis (SCA) with Docker images.

34 MINUTE VIDEO

Conference:
Open Source Summit

A vulnerability database should not be about vulnerabilities!

Lookup package vulnerabilities in an open database that aggregates them all with better accuracy!

29 MINUTE VIDEO

Conference:
Open Source Summit

Identifying packages and vulnerabilities across ecosystems

PURL and vers utilize a common language to identify FOSS packages and vulnerabilities.

29 MINUTE VIDEO

Conference:
FOSDEM 2021

Updates on open source scanning with ScanCode

Best-in-class license, copyright and package manifest detection and data collection.

15 MINUTE VIDEO

Conference:
SFScon 2020

FOSS & Third Party Software Compliance for Small Businesses

Planting seeds for blooming compliance and learn what is necessary to be compliant!

19 MINUTE VIDEO

Conference:
openSUSE 2020

Building the FOSS security commons to identify vulnerabilities

We need a new approach for identifying FOSS vulnerabilities, using open data and FOSS tools.

44 MINUTE VIDEO

Conference:
openSUSE 2020

Exploring the state of open source licensing clarity

Provenance and licensing of third-party software should be available as an open structured data.

44 MINUTE VIDEO

Conference:
PyCon India 2020

Introducing FetchCode: A smart code downloader

Give a URL, ANY URL or PURL and FetchCode will FETCH it as a universal and reliable library.

29 MINUTE VIDEO

Conference:
OSS Summit 2020

Why is there no free software vulnerability database?

Open data like FOSS code can improve application security with open tools and data for all.

53 MINUTE VIDEO

Conference:
FOSDEM 2019

Making Sense of So Many License Compliance Tools

A panel discussion on how FOSS tools for license compliance compare to proprietary tools.

53 MINUTE VIDEO

Video:
The New Stack

License Compliance is Like Saying Thank You for a Gift

Lack of adherence to software licenses can lead to legal actions. Philippe offers help.

29 MINUTE VIDEO

Video:
FLOSS Weekly

ScanCode: Open source scanning solution to identify licenses

A development team can start scanning code on their own with ScanCode.

65 MINUTE VIDEO

Conference:
FOSDEM 2018

Panel discussion on the future of package management

Experts discuss what to expect for package management using FOSS tools.

66 MINUTE VIDEO

Conference:
FOSDEM 2018

Meet purl: a “mostly” universal software package URL

Identify and locate software packages using a simple yet expressive package URL.

25 MINUTE VIDEO

Video:
OpenChain

VulnTotal: Validate vulnerability coverage of VulnerableCode

Uniquely collates and cross-references FOSS vulnerability data from multiple sources.

29 MINUTE VIDEO

Webinar:

Finding FOSS software vulnerabilities with FOSS tools

VulnerableCode’s benefit: better security of software applications with open tools and data for all.

51 MINUTE VIDEO

Webinar:

Scanning Docker images with ScanCode.io

How to use ScanCode.io for Software Composition Analysis (SCA) with Docker images.

34 MINUTE VIDEO

Conference:
Open Source Summit

A vulnerability database should not be about vulnerabilities!

Lookup package vulnerabilities in an open database that aggregates them all with better accuracy!

29 MINUTE VIDEO

Conference:
Open Source Summit

Identifying packages and vulnerabilities across ecosystems

PURL and vers utilize a common language to identify FOSS packages and vulnerabilities.

29 MINUTE VIDEO

Conference:
FOSDEM 2021

Updates on open source scanning with ScanCode

Best-in-class license, copyright and package manifest detection and data collection.

15 MINUTE VIDEO

Conference:
SFScon 2020

FOSS & Third Party Software Compliance for Small Businesses

Planting seeds for blooming compliance and learn what is necessary to be compliant!

19 MINUTE VIDEO

Conference:
openSUSE 2020

Building the FOSS security commons to identify vulnerabilities

We need a new approach for identifying FOSS vulnerabilities, using open data and FOSS tools.

44 MINUTE VIDEO

Conference:
openSUSE 2020

Exploring the state of open source licensing clarity

Provenance and licensing of third-party software should be available as an open structured data.

44 MINUTE VIDEO

Conference:
PyCon India 2020

Introducing FetchCode: A smart code downloader

Give a URL, ANY URL or PURL and FetchCode will FETCH it as a universal and reliable library.

29 MINUTE VIDEO

Conference:
OSS Summit 2020

Why is there no free software vulnerability database?

Open data like FOSS code can improve application security with open tools and data for all.

53 MINUTE VIDEO

Conference:
FOSDEM 2019

Making Sense of So Many License Compliance Tools

A panel discussion on how FOSS tools for license compliance compare to proprietary tools.

53 MINUTE VIDEO

Video:
The New Stack

License Compliance is Like Saying Thank You for a Gift

Lack of adherence to software licenses can lead to legal actions. Philippe offers help.

29 MINUTE VIDEO

Video:
FLOSS Weekly

ScanCode: Open source scanning solution to identify licenses

A development team can start scanning code on their own with ScanCode.

65 MINUTE VIDEO

Conference:
FOSDEM 2018

Panel discussion on the future of package management

Experts discuss what to expect for package management using FOSS tools.

66 MINUTE VIDEO

Conference:
FOSDEM 2018

Meet purl: a “mostly” universal software package URL

Identify and locate software packages using a simple yet expressive package URL.

25 MINUTE VIDEO

Ensuring software license compliance can be difficult.

Watch videos on SCA, ScanCode, SBOMs, software licensing, FOSS compliance, VulnerableCode, and more.

VulnTotal: Validate vulnerability coverage of VulnerableCode

Finding FOSS software vulnerabilities with FOSS tools

Scanning Docker images with ScanCode.io

A vulnerability database should not be about vulnerabilities!

Identifying packages and vulnerabilities across ecosystems

Updates on open source scanning with ScanCode

FOSS & Third Party Software Compliance for Small Businesses

Building the FOSS security commons to identify vulnerabilities

Exploring the state of open source licensing clarity

Introducing FetchCode: A smart code downloader

Why is there no free software vulnerability database?

Making Sense of So Many License Compliance Tools

License Compliance is Like Saying Thank You for a Gift

ScanCode: Open source scanning solution to identify licenses

Panel discussion on the future of package management

Meet purl: a “mostly” universal software package URL

VulnTotal: Validate vulnerability coverage of VulnerableCode

Finding FOSS software vulnerabilities with FOSS tools

Scanning Docker images with ScanCode.io

A vulnerability database should not be about vulnerabilities!

Identifying packages and vulnerabilities across ecosystems

Updates on open source scanning with ScanCode

FOSS & Third Party Software Compliance for Small Businesses

Building the FOSS security commons to identify vulnerabilities

Exploring the state of open source licensing clarity

Introducing FetchCode: A smart code downloader

Why is there no free software vulnerability database?

Making Sense of So Many License Compliance Tools

License Compliance is Like Saying Thank You for a Gift

ScanCode: Open source scanning solution to identify licenses

Panel discussion on the future of package management

Meet purl: a “mostly” universal software package URL

Ensuring software license compliance can be difficult.

We can help.

Know what's in your software.

SCA Software

Services

Resources

Company