Products
Resources
Company
Pricing
Log In
Demo
Start Free
Library
Glossary
Guides
DevOps Tools
Docs
Resource Library
Discover guides, whitepapers, and tools to help you master software supply chain management.
Search
Resource Types
Checklists
Infographics
Interactive Guides
Podcasts
Reports
Webinars
Whitepapers
Resource Location
All Resources
Internal Resources
External Resources
Featured
Vulnerability Prioritization: An Insider’s Guide to the EPSS Scoring System
Webinars
External
Software Composition Analysis: Elements of an Effective Solution
Reports
CycloneDX SBOM Format
Interactive Guides
Latest
SPDX SBOM Format
Interactive Guides
Software Bill of Materials (SBOM)
Interactive Guides
Android Open Source Security
Interactive Guides
Open Source Licenses Guide
Interactive Guides
SBOM Compliance Requirements
Interactive Guides
Software Composition Analysis (SCA)
Interactive Guides
More Resources
Software Supply Chain Security
Interactive Guides
Open Source License Security in Automotive
Interactive Guides
Developer's Guide to Open Source Software Licenses
Interactive Guides
7 Steps for IPO Due Diligence and Open Source Compliance: From Mutual NDAs to the IPO Roadshow
Infographics
7 Steps for M&A Due Diligence and Open Source Compliance
Infographics
A New Wave of IP Risks: How Open Source is Changing IP Risk in the Software Supply Chain
Whitepapers
Adopting Haskell into an Existing Codebase
Podcasts
An Insider’s Guide to SPDX
Webinars
External
Attacking Applications via Upstream Dependency Maintainers
Webinars
External
Auditing Your Company's Use of Open Source: Checklist for Creating an Open Source Compliance Program
Checklists
Automating Application Security Testing with Github Actions
Webinars
External
Automating developer-centric application security in CI/CD
Webinars
External
Automating Open Source License Compliance Essentials
Webinars
External
Best Practices in Open Source Compliance and Security with Wipro & Moonfare
Webinars
External
Beyond the CVE: Addressing Novel Supply Chain Risks
Webinars
External
Building the Foundation of Your SBOM and VEX Programs
Webinars
External
Common SBOM Challenges and How to Solve Them
Webinars
External
Compliance with the GPLv3 “User Products” Clause and the Impact of SFC v. Vizio
Webinars
External
Customizing Your Open Source Compliance Policy, Featuring Heather Meeker
Webinars
External
Demystifying NIST’s Open Source Software Security Controls
Webinars
External
Early-Stage Technology Decisions and Regrets
Podcasts
Enterprise Software Architecture and Open Source Compliance
Webinars
External
Evaluating Compliance Technology
Checklists
FOSSA: Open Source Management with Kevin Wang
Podcasts
External
FOSSA vs. Blackduck by Synopsys
Checklists
FOSSA vs. WhiteSource
Checklists
Generating, Importing, and Managing SBOMs with FOSSA
Webinars
External
Heather Meeker on OSS Compliance: Demystifying License Notices with Automation
Webinars
External
How Applause Does Open Source Compliance and Security the Developer's Way
Webinars
External
How Kodiak Robotics Automates Open Source Management
Webinars
External
How Rancher Labs Increased Development Efficiency and Security with FOSSA
Webinars
External
How to Efficiently Manage OSS Security and Compliance Across Teams
Webinars
External
Legal Compliance for Modern Software Development
Webinars
External
Live Panel: Simplifying OSS Compliance in the Automotive Industry
Webinars
External
Live Webinar & Demo: SBOMs Made Simple with FOSSA
Webinars
External
Live Webinar: Getting Started with FOSSA
Webinars
External
Log4Shell: A Case Study in Responding to OSS 0-Day Attacks
Webinars
External
M&A and Open Source During Uncertain Times
Webinars
External
Managing Engineering Projects
Podcasts
Maximizing the Value of Open Source
Webinars
External
Modernize Your Open Source Audits: 5 Reasons Spreadsheets Fail for Managing OSS Licenses
Whitepapers
NIS2 Directive: Understanding and Complying with Supply Chain Security Guidance
Webinars
External
Open Source Management for Automotive Companies
Infographics
OSS License Compliance: Bridging the Legal-Engineering Divide
Webinars
External
OSS License Compliance: Practical Strategies for OpenChain ISO/IEC 5230:2020
Webinars
External
Reps, Warranties, and Open Source Software, Featuring Jim Markwith
Webinars
External
SBOMs in 2023: Trends, Tools, and Capabilities
Webinars
External
SCA Purchasing and Implementation Trends
Podcasts
Sentry’s Software Licensing Journey — And Why It Matters for You
Webinars
External
Structuring and Growing a Customer Success Team
Podcasts
The Changing Role Of SCA In Your Open Source Security Strategy, Feat. Forrester
Webinars
External
The Dos and Don'ts of SBOMs for Security
Webinars
External
The In-House Counsel’s Guide to SBOMs
Webinars
External
The Lawyer's Guide to a Comprehensive Open Source Compliance Program
Webinars
External
The Lawyer’s Guide to OSS License Compliance Tools, Featuring Heather Meeker
Webinars
External
The Path to a Sustainable Software Supply Chain
Webinars
External
Truth Social, AGPL, and OSS License Compliance
Webinars
External
Under the Hood of FOSSA’s New License Scanner
Webinars
External
Understanding and Using the CycloneDX SBOM Standard
Webinars
External
When "Open Source" Isn’t Open Source, Featuring Heather Meeker
Webinars
External