Product

Products
Vulnerability Management
Automatically find and fix open source vulnerabilities in dependencies, source files local open source assets
License Compliance Management
Accurate license detection in dependencies and source code with automated source code attribution
Supply Chain Risk & Quality
Open source supply chain risk and quality data detects anomalies that put your company at risk. We automatically alert and gate threatening components
Embedded Open Source Detection
Up to 15% of your software is made from embedded open source. We can detect, report and automatically annotate your source files to ensure compliance

Services
Mergers & Acquisitions + Audits
Quick, comprehensive, and accurate open source license and vulnerability audit with actionable data and automated license annotation.
Resources

Blog Integrations & Language Support
Company

About us
Pricing
Contact

Threatrix Blog

Enterprise open source security & compliance

Category: open source licensing

Open Source Snippet Level License Detection & Why it Matters

Post author By Kristen Bianchi
Post date March 2, 2023
No Comments on Open Source Snippet Level License Detection & Why it Matters

Open-source software is becoming increasingly popular in modern software development, and for good reason. Open-source components can save development time and reduce costs, making it a necessary option for developers within companies of all sizes. However, using open source also presents new compliance challenges with the licenses attached to the open source. Licensing requirements for […]

compliance DAST open source licensing open source security SAST Software Bill of Materials

Where to put your money first for Security tools. SCA, SAST, or DAST?

Post author By Kristen Bianchi
Post date July 22, 2022
No Comments on Where to put your money first for Security tools. SCA, SAST, or DAST?

Having researched the importance of securing your company’s intellectual property, you have started down the road towards what tools work best for securing it. Let’s look at the three most common tools companies should consider purchasing and where best to allocate your cybersecurity funds. The three most popular tools are SCA, SAST, and DAST. Software […]

Tags DAST, SAST, sca

compliance log4j open source licensing open source security

Security and License Compliance Awareness is the Theme of Open Source 2022

Post author By Kristen Bianchi
Post date July 19, 2022
No Comments on Security and License Compliance Awareness is the Theme of Open Source 2022

Open-source software is in all software development, and we’ll see even more growth continue in 2022. Every industry vertical uses and develops open-source software, and all businesses are considered software companies. As a result of the pandemic, more businesses offer their products and services online or through apps. The increase in open source adoption and […]

open source licensing open source security Software Bill of Materials

Measuring Up Software Composition Analysis Tools

Post author By Kristen Bianchi
Post date January 12, 2022
No Comments on Measuring Up Software Composition Analysis Tools

The most critical challenge your organization faces when choosing a software composition analysis (SCA) vendor is understanding that some miss up to 60% of the open source, exposing your organization to security and licensing risks. We’re also seeing challenges surrounding the accuracy of the results. A vendor will find some open source but then mismatch […]

Tags #opensourcesecurity, #opensourcesoftware, #SBOM

compliance cybersecurity Open Source open source licensing security

What Are the Ingredients for an Accurate SBOM?

Post author By John McDonald
Post date October 6, 2021
No Comments on What Are the Ingredients for an Accurate SBOM?

The Software Bill of Materials (SBOM) has made quite a stir lately. From President Biden’s executive order to further secure our infrastructure to the NHS in Britain, emulating the mandate to improve security and transparency for England’s healthcare system. Given the sudden popularity of the SBOM and the resulting demand to create one, we feel […]

compliance Open Source open source licensing

Four New Licenses Approved by the Open Source Initiative

Post author By Kristen Bianchi
Post date April 20, 2021
No Comments on Four New Licenses Approved by the Open Source Initiative

As the steward of the Open Source Definition, the Open Source Initiative has been designating licenses as “open source” for over 20 years. These licenses are the foundation of the open-source software ecosystem, ensuring that everyone can use, improve, and share software. When a license is approved, it is because the OSI believes that the […]

Threatrix Blog

Connect with Us

Can Cyberattacks kill your SMB

Open-Source Licenses Sparks Debate

Extortionists Breach Qualys Using Accellion Exploit

The Four Laws fo Cybersecurity

Woman in Cybersecurity