-
SCANOSS Platform Powers a Series of Stellar Open Source Contributions
The beauty of the Open Source movement is truly revealed when diverse minds and talents unite to make innovations that push boundaries. And witnessing the recent contributions leveraging the SCANOSS platform, one can’t help but marvel at the collective spirit of this community. The VSCode Plugin In an age where AI-assisted coding is quickly becoming…
-
Demystifying SBOMs: Why SPDX and CycloneDX Aren’t Enough
The software industry has seen a significant shift towards greater transparency and documentation, and a prime example of this trend is the increasing use of Software Bills of Materials (SBOMs). SBOMs serve as critical inventory lists, documenting the various open-source software components used in a particular product or application. However, there’s a dangerous misconception permeating…
-
Challenging the Downplay of Plagiarism in AI-Generated Code
The rise of Artificial Intelligence (AI) in coding has brought about a radical shift in the way software is developed. AI tools like CoPilot and ChatGPT are becoming essential contributors to the code base in many software projects. However, a significant concern that these advancements have spawned is the risk of generating code that may…
-
SCANOSS Announces Vulnerability Checking for SBOMs as a Free Service
SCANOSS, a leading provider of software composition analysis (SCA) and Open Source Intelligence, has announced the release of CPE to PURL (Package URL) relations as open source. This move will allow organizations to keep track of known vulnerabilities in any of their SBOM (Software Bills of Materials) securely, anonymously and free. Security is of the…
-
Navigating the Rights of Developers in AI-Assisted Software Development
AI-assisted software development has brought unprecedented productivity and efficiency to the coding process. However, it has also raised concerns about the rights of developers and the compliance of AI-generated code with licensing and plagiarism regulations. The Problem One of the main concerns with AI-generated code is the potential for unintentional replication of existing code.…
-
Complying with Executive Order 14028: How SCANOSS Can Help Generate Complete SBOMs
Executive Order 14028, signed by President Joe Biden on May 12, 2021, aims to strengthen the United States’ cybersecurity posture. One of its key provisions requires the generation of Software Bill of Materials (SBOMs) for software sold to the federal government. In this article, we’ll discuss how SCANOSS can help companies generate complete SBOMs, address…
-
Demystifying SBOMs: Composition, Specifications, and SCANOSS’s Comprehensive Detection Capabilities
In today’s world of software development, managing and understanding the composition of software applications is crucial for security, compliance, and efficient development processes. A Software Bill of Materials (SBOM) is a critical tool that provides detailed information about the components used in a software application, enabling developers and organizations to have a clear understanding of…
-
SBOM Essentials: Enhancing Security and Compliance with SCANOSS
Software Bill of Materials (SBOMs) have become increasingly important in today’s world of software development, where open source software (OSS) components are extensively used. SBOMs provide vital information about the OSS components used in an application, making them crucial for effective software composition analysis (SCA), license compliance, and security management. In this article, we will…
-
The Power of Visibility: Managing Open Source with Complete SBOMs and SCANOSS
Introduction As software development continues to rely heavily on open source components, establishing an effective open source management strategy becomes essential for organizations. A crucial part of this strategy involves generating comprehensive Software Bill of Materials (SBOMs). In this article, we will explore the importance of SBOMs, how SCANOSS can help detect both declared and…
-
Five SBOM Challenges in Embedded Development
Introduction The development of embedded systems has become increasingly complex, with a wide range of hardware and software components coming from different sources. The use of third-party software and components can increase development efficiency but also introduces new challenges such as supply chain risks, compliance issues, and security threats. In this context, Software Bill of…
Blog
Follow us
The SCANOSS Blog
The latest updates on all SCANOSS products and topics