FOSSA's perspective on container scanning.
The increased dependence on open source software opens up a new responsibility--you have to keep track of all of the software you're using because open source software has licenses attached to them ... Open source is often free, but there are still responsibilities associated with its use.
Any OS component could be subject to a myriad of OS licenses that you might be unable to identify without performing a source code audit and scan.
FOSSA Release notes from January 2020. Introducing Release Groups, create an audit log of your software releases.
FOSSA's December 2019 release notes includes updates to attribution reporting as well as user management enhancements.
There are several things to take into consideration so if you are evaluating whether or not snippet scanning is a requirement for your SCA solution. Here is an overview of some key questions to ask in your evaluation.
FOSSA's November 2019 product release notes include new user management features, UI enhancements, and the introduction of JSON reports.
We are excited to announce FOSSA has been named to CNBC's Upstart 100 List, CNBC's annual list of top startups to watch.
At FOSSA, an intuition for developer-focused products is a critical part of not only our differentiation, but also our mission.
FOSSA's September releases includes app performance and stability improvements, new reporting formats, updated jira integration, and updates to the FOSSA CLI.
I'm excited to announce that FOSSA has raised an $8.5M Series A from Bain Capital Ventures, Costanoa Ventures and Norwest Venture Partners. This brings our total funding to $11M and funds the growth of our incredible team, product and customer base.
FOSSA is on the road in Europe, partnering with Cloudbees for three dates in London, Frankfurt and Stockholm in the autumn of 2019.
Learn more about FOSSA's August product updates. We've added new languages, updated issue management, and added new reporting functionality.
FOSSA partners with CircleCI to seamlessly integrate open source compliance and vulnerability management into your CI/CD pipeline.
FOSSA July 2019 release notes: Focusing on improving our CLI and reports, as well as adding support for Rust.
With new legislation and new technologies, a partnership between legal teams and software engineers is more important than ever. Learn more about the responsibilities these two teams share.
The culture at FOSSA is one that embodies learning and willingness to help one another out. I still remember how nervous I was on my first day and how quickly that changed by the time I left that same day.
Usually open source components are licensed under common licenses such as the MIT, GPL, or Apache Licenses. However, there are some creative, funny, and ridiculous open source licenses out there as well–here are the top 6!
At FOSSA, we’re kicking off the summer with a new report types, and new integration support, and some major enhancements to our project page.
Open source licenses determine how an open source library is accessed, used, and redistributed. It's important to understand because there are legal responsibilities and pros/cons to each license. There are two main categories of OSS licenses–permissive and copyleft.
A private artifact repository is a beneficial resource for collaboration and to keep open source software packages in a centralized location. However, there are three things to look out for to ensure open source license compliance.
Many companies require a form driven process to use new open source components. Here are some of the pitfalls around manual approval processes and best practices around using open source in your products.
At FOSSA, we believe in supporting the open source community. That's why we are proud members of the CNFC, a major contributor to the open source community.
FOSSA's product release notes for May 2019.
Changes in software delivery practices mean it’s time for open source compliance processes to adapt and mirror the software development practices. Learn how to modernize your open source compliance.
We're starting by turning open source license compliance into what it should be — simple, accessible. Learn more
950 Howard StreetSan Francisco, CA94103