• +1.800.374.4353
  • Contact Us
  • Search
  • revenera.de
Revenera
Revenera
  • Search
    • Search
  • Blog
    • Software Installation
    • Software Composition Analysis
    • Software Monetization
  • Install
  • Protect
  • Monetize
  • Resources
  • About Us
  • Revenera.com
    • Homepage
    • Install
    • Protect
    • Monetize
    • Resources
    • About Us
  • Community
  • flexera.com
  • BLOG
  • Software Installation
  • Software Composition Analysis
  • Software Monetization
  • Subscribe
    • Get updates delivered to your inbox:

    • Follow Us:  

Software Composition Analysis – What’s in Your Code?

Everything Your Business Needs to Know About SBOMs

On the 12th of May 2021, The White House released an Executive Order (EO) that outlined the guidelines for improving the cybersecurity of the United States. After many high-profile cybersecurity breac…

July 29, 2022 Kendra Morton

How the U.S. Executive Order Is Shaping the Software Supply Chain Going Forward

  Early in December of 2021, the international cybersecurity community mobilized in response to the discovery of the Log4J vulnerability. This critical vulnerability was within the logging librar…

July 11, 2022 Kendra Morton

June Newsletter: The Latest Buzz in Software Composition Analysis Professional Services

In The News Software Composition Analysis Certification for Legal Professionals Log4j: Come out, come out wherever you are! Spring4Shell: Deep breath. Don’t panic. Mitigate. Field Notes: Understanding…

June 15, 2022 Michael Lelchuk

What’s Trending with SBOMs, Developers, and Code Scanning

Those involved in the world of software development are used to continuous change, high expectations, and industry interruptions that require constant pivoting, but the last couple of years have chall…

May 19, 2022 Alex Rybak

Spring4Shell: Deep breath. Don’t panic. Mitigate.

Development and security teams, software creators, and companies alike were hit once again with another vulnerability when news made its way online of a disclosure of a PoC for an unauthenticated zero…

April 4, 2022 Kendra Morton

Log4j: Come out, come out wherever you are!

On December 10th, 2021, a critical vulnerability was found in Log4j.  It impacts almost every organization which develops applications in Java, or that uses third-party software.  Vulnerabilities get …

March 11, 2022 Michael Lelchuk

Open Source: Trouble because of sudden license changes

Open Source does not mean that the use of the code is allowed without any restriction: The use is subject to conditions which are formulated by the author (copyright holder) in the form of a license. …

February 22, 2022 Kendra Morton

The story behind colors.js and faker.js

The bizarre case of the author who corrupted his own npm packages – colors.js and faker.js. Originally reported by Bleeping Computer on Jan 9th the author of npm packages colors.js and faker.js…

February 9, 2022 Marcus Lucero

The FTC’s warning to companies about the failure to protect against open source vulnerabilities

In direct response to the Log4j vulnerability, the United States Federal Trade Commission published an alert. Net? If your company does not take proactive steps to prepare for future vulnerabilities l…

February 4, 2022 Kendra Morton

Software supply-chain vulnerabilities: A close look on code

Vulnerabilities that affect the supply chain of software and its distribution are easily among the most terrifying experiences any company involved must endure. Such vulnerabilities typically affect a…

December 15, 2021 Lars Wiebusch

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • …
  • 11
  • »

Top 10 Posts

  • What is Software Composition Analysis?
  • Open Source Software Licensing: Not everything is as it seems.
  • Let’s Talk Open Source Trends (A 2020 Early Look)
  • Everything Your Business Needs to Know About SBOMs
  • How the U.S. Executive Order Is Shaping the Software Supply Chain Going Forward
  • June Newsletter: The Latest Buzz in Software Composition Analysis Professional Services
  • What’s Trending with SBOMs, Developers, and Code Scanning
  • Spring4Shell: Deep breath. Don’t panic. Mitigate.
  • Log4j: Come out, come out wherever you are!
  • Open Source: Trouble because of sudden license changes
  • The story behind colors.js and faker.js
  • The FTC’s warning to companies about the failure to protect against open source vulnerabilities
  • Software supply-chain vulnerabilities: A close look on code

Topics

  • Software Installation
  • Software Composition Analysis
  • Software Monetization

Tweets by Revenera

Do you have a strategy for managing your open source? Tune in to the podcast to discover why Open Source Program Office (OSPO) is deemed important by experts and how it can help you keep your open source free from risk. Click the link to start listening.

http://ow.ly/ksAj50K3ZmF

Image for the Tweet beginning: Do you have a strategy Twitter feed image.
Reply on Twitter 1557804412189528064 Retweet on Twitter 1557804412189528064 0 Like on Twitter 1557804412189528064 0 Twitter 1557804412189528064

Short-term clarity creates long-term speed.

Jake Rich shares his top 3 tips for overcoming complexity and taking a product from 0 to 1. Read more below.

http://ow.ly/BpfW50KcXuu

Image for the Tweet beginning: Short-term clarity creates long-term speed. Twitter feed image.
Reply on Twitter 1557790126327070722 Retweet on Twitter 1557790126327070722 0 Like on Twitter 1557790126327070722 0 Twitter 1557790126327070722

Discover how Revenera’s Consulting team can help streamline your installation strategy and provide you with the proper resources to design and develop your installations. Click the link below to learn more.

http://ow.ly/Z4YG50K3Zle

Image for the Tweet beginning: Discover how Revenera’s Consulting team Twitter feed image.
Reply on Twitter 1557759665227931650 Retweet on Twitter 1557759665227931650 0 Like on Twitter 1557759665227931650 0 Twitter 1557759665227931650

Revenera’s open source business solutions can help you manage your open source license obligations to keep it free from legal risk while equipping your team with more compliant software development practices. Click the link to get started.

http://ow.ly/y9Nv50K3ZiM

Reply on Twitter 1557442015222194176 Retweet on Twitter 1557442015222194176 0 Like on Twitter 1557442015222194176 2 Twitter 1557442015222194176

You only have one chance to make a great first impression.

@tsharon on why product adoption is an important metric to understand, how to measure it, and what to do with the data. Read more.

http://ow.ly/WugG50KcXqJ

Image for the Tweet beginning: You only have one chance Twitter feed image.
Reply on Twitter 1557411816275382275 Retweet on Twitter 1557411816275382275 0 Like on Twitter 1557411816275382275 0 Twitter 1557411816275382275
LOAD MORE...
Search

Archive

Software Composition Analysis Tags

agpl    Apache    Apache Log4j    Apache Struts 2    Bootloader    CISA    color.js    Cybersecurity    Cybersecurity Executive Order    Executive Order    faker.js    GitHub    GPL    GRUB2    Healthcare    IoT / Intelligent Devices    Java    Legal counsel    License Management    Linux    Log4j    Log4Shell    MIT License    NIST    node modules    npm    Nvidia    Open Source Audits    Open Source Compliance    Open Source Security    Open Source Software (OSS)    OpenChain    Oracle WebLogic    OSS Licenses    Patching    RCE    Remote Code Execution    SBOM    SCA    SCA Maturity Model    SDLC    shift left    software bill of materials    software dependencies    software developers    software development    software licenses    software supply chain    software vulnerability    Spring4Shell    third-party software    US Government    vulnerabilities    Windows   
About the Software Composition Analysis blog

A resource for developers, legal and security experts using and managing open source software. We encourage your feedback as we discuss trends and insights around open source security and license compliance. What is Software Composition Analysis?

Updates in your inbox

Give us your email and we’ll keep you in the loop

Revenera
  • +1.800.374.4353
  • Contact Us
  • Revenera Community
  • revenera.de
  • Twitter
  • LinkedIn
  • YouTube
  • Instagram

© 2022 Flexera Software. All Rights Reserved.

Install

  • Install
  • Products
  • Services & Training

Protect

  • Protect
  • Business Solutions
  • Products

Monetize

  • Monetize
  • Business Solutions
  • Products

Resources

  • All Resources
  • Blog
  • Case Studies
  • Datasheets
  • Demos & Trials
  • Videos
  • Webinars & Events
  • White Papers & Industry Reports

About Us

  • About Us
  • Leadership
  • Media/Press Center
  • Partners
  • Careers
  • Contact Us
  • Terms and Conditions
  • Privacy Policy
  • Revenera.com Sitemap
© 2022 Flexera Software. All rights reserved.    Terms and Conditions    Privacy Policy