Read

Learn more about AboutCode projects, open source, SBOMs, vulnerabilities, licensing, SCA, compliance, and more.

Watch

Hear the latest updates with recorded videos from conferences, webinars, and other events from the AboutCode community.

atom and chen join AboutCode

FOSS Daily for licensing “hygiene” and vulnerability compliance

PURLs of Wisdom: Universal software package identification

Non-Vulnerable Dependency Resolution

ScanCode LicenseDB: 2,000+ licenses curated in a public database

What is a Dual License Anyway?

SCA the FOSS Way – Part 1: Software Composition Analysis

Do you really need to update the copyright statement each new year?

VulnerableCode v31 expands vulnerability coverage

There and back again: A software versioning story

Providing Clarity on License Clarity Scoring in ScanCode

VulnerableCode: Find FOSS vulnerabilities, improve FOSS security

VulnerableCode v30 publicly available with new UI and API access

Google Summer of Code: Open source SCA tools with AboutCode

Software Bill of Materials and Software Composition Analysis

nexB on GPL 3.0 and Related License Compliance Issues

Using Copyleft-licensed software components in a Java application

Importance of snippet matching for software provenance analysis

How much documentation for a software project?

What are the membership levels in the Linux Foundation?

Open Source Stack Exchange: Can a team be a copyright holder?

Is a page that contains Javascript considered redistribution?

Wix vs. WordPress and what we can learn about the GPL

Software Dependencies: A not-too-technical guide

What are the Benefits of Using Open Source Software?

What is Open Source Software (OSS)? And Is It Free to Use?

Best Practices for Open Source Software (OSS) Attribution

OSS Attribution Case Study: DataTables and Healthcare.gov

python-inspector: Easily resolve Python dependencies

Manage your organization’s Usage Policies in DejaCode

Open Source Software Supply Chain: FOSS for FOSS

Practical License Detection for Organizations

Tooling in software supply chain management

Standardizing FOSS package identifiers using PURL

Track your software, and ensure compliance with DejaCode

Software Composition Analysis for Software Supply Chain Security

FOSDEM Recap: FOSDEM 2023 partial event report

Technical deep dive into VulnerableCode v31 and VulnTotal

VulnTotal: Validate vulnerability coverage of VulnerableCode

Finding FOSS software vulnerabilities with FOSS tools

Scanning Docker images with ScanCode.io

A vulnerability database should not be about vulnerabilities!

Identifying packages and vulnerabilities across ecosystems

Updates on open source scanning with ScanCode

FOSS and Third Party Software Compliance for Small Businesses

Building the FOSS security commons to identify vulnerabilities

Exploring the state of open source licensing clarity

Introducing FetchCode: A smart code downloader

Why is there no free software vulnerability database?

Making Sense of So Many License Compliance Tools

License Compliance is Like Saying Thank You for a Gift

ScanCode: Open source scanning solution to identify licenses

The future of package management

Meet PURL: a “mostly” universal software package URL

Ready to automate open compliance?

Request a demo of the AboutCode stack.

Request demo

Open source for open source.

  • Projects
  • Resources
  • Services

© AboutCode Europe ASBL. All rights reserved.

Github Linkedin Slack Gitter Envelope

Privacy Policy | Terms of Use | Credits