We are so excited to announce we have joined the Secure Developer Alliance (SDA)! 🎉

This partnership with New Relic will aid organizations in managing vulnerabilities more efficiently. 🤝🏻

View the full announcement: fossa.com/blog/fossa-joi…

#OSS #VulnerabilityManagement

NEW: See how application performance and error monitoring leader Sentry manages and automates compliance with open source & source available licensing requirements. (@chadwhitacre_)

fossa.com/blog/sentry-ma…

✨ Rust in Production: FOSSA

👉 Interview with Jessica Black, a senior software engineer at FOSSA(FOSSA)

👉 'Team was quite excited to learn Rust' ... 'just taught themselves Rust through the official Rust Programming Language book'

serokell.io/blog/rust-in-p…

#rust lang #rust

A new version of the CycloneDX SBOM Spec (OWASP) (v 1.6) was released earlier this week, with several exciting added capabilities (including attestations). Software supply chain security and #SBOM expert Tony Turner discusses the highlights on our blog.

fossa.com/blog/whats-new…

Calling Seattle residents and  #OSSummit  North America attendees: Have plans next Wednesday (4/17) between 5-7 p.m.? If not, consider joining our happy hour at Bombo Italian Kitchen!

Fill out the form linked below or swing by our booth (#21) to RSVP.

docs.google.com/forms/d/e/1FAI…

NEW: We're excited to announce our May 22 webinar with jayjacobs, co-chair of the Exploit Prediction Scoring System ( #EPSS )! Jay will discuss the EPSS data model and provide recommendations for using EPSS to inform vulnerability prioritization.

brighttalk.com/webcast/17752/…

We're excited to sponsor this year's Open Source Summit North America in Seattle! We look forward to meeting attendees at our booth (#21) and catching up over dinner or drinks. See details: fossa.com/open-source-su…

CVE-2024-3094, the new high-severity vulnerability impacting XZ Utils, is no ordinary supply chain attack.

fossa.com/blog/cve-2024-…

FOSSA’s latest product updates unlock a new level of software transparency and remediation velocity, including everything from finding zero-day vulnerabilities to tracking the impact of your remediation efforts. Check out our blog to learn more. fossa.com/blog/fossa-pro…

NEW: Software supply chain security expert Tony Turner discusses #SBOM (and #SBOM -adjacent) formats (like SPDX, CycloneDX, VEX, and SWID) in our latest blog.
fossa.com/blog/sbom-form…

Looking for a comprehensive view of your open source risk? FOSSA's issue overview dashboard shows security, licensing, and quality issues across your entire organization, as well as remediation progress over time. Learn more in our latest blog. fossa.com/blog/enhancing…

It was a great Friday at the Southern California Linux Expo ( #SCALE21x )! If you haven't yet, we welcome you to swing by our booth (316) to talk #opensource and #SBOMs (and enter to win a sweet Dune-themed LEGO set)!

Introducing FOSSA Quality: Go beyond vulnerabilities and licenses to enhance your software supply chain's health. Tackle outdated and abandoned packages with deeper insights. Learn more in our latest blog. fossa.com/blog/understan…

The FDA requires medical device manufacturers to provide an #SBOM (plus several categories of SBOM-related information) during the premarket approval process.
fossa.com/blog/complying…

NEW: We're excited to announce our April 10 webinar with Senior Product Manager Cortez Frazier Jr that will cover strategies for overcoming common #SBOM program roadblocks.

brighttalk.com/webcast/17752/…

We're just a few days away from our webinar on one of the more complex questions impacting #opensource license compliance programs: How can legal and engineering teams most effectively collaborate on important compliance initiatives?

brighttalk.com/webcast/17752/…

Tomorrow (Feb. 27): Don't miss our webinar on #SBOM and VEX program foundations with Cassie Crossley, author of the new O'Reilly Media book: 'Software Supply Chain Security'!

brighttalk.com/webcast/17752/…

NEW: See how robotic process automation (RPA) leader UiPath manages  #opensource  license compliance, security, and  #SBOMs  in this FOSSA customer profile.

fossa.com/customers/uipa…

Thanks to everyone who watched FOSSA Senior Product Manager Cortez Frazier Jr.'s presentation on #SBOMs today at Civo Navigate!

You can hear more from Cortez in our recent on-demand webinar: 'The Dos and Don'ts of Using SBOMs for Security.'

brighttalk.com/webcast/17752/…

Thanks to everyone who has visited our booth during Day 1 of the Civo Navigate Conference! We're having a great time talking #SBOMs and #opensource management — we'd invite you to meet our team (and pick up some swag) if you haven't already.