Threatrix Blog

Enterprise open source security & compliance

Sphere
Blog Background

Results for:

Clear
Threatrix
OPEN SOURCE SECURITY
The Solution to Outdated Open Source Components and the Accumulation of Technical Debt

As the ecosystem of open source software continues to expand, it brings opportunities and threats that can pose significant challenges to corporate security infrastructure. One such threat that often gets overshadowed is the technical debt that accumulates from using outdated open source components in software development. Outdated components are a common, invisible menace.

By Kristen Bianchi
July 6, 2023
No comments
Threatrix
AI DEVELOPMENT TOOLS OPEN SOURCE COMPLIANCE
AI in Code Generation: Exploring Capabilities and Confronting Open Source Licensing Challenges

Today, technology continues to change at an astonishing pace, becoming an increasingly influential player in nearly all aspects of our lives. From machine learning to neural networks, Artificial Intelligence (AI) is undoubtedly at the heart of this tech revolution, especially in the realm of software development.

By Kristen Bianchi
July 6, 2023
No comments
Accuracy in Open Source Compliance: Unveiling the Missing Piece of Software Composition Analysis Tools
OPEN SOURCE COMPLIANCE
Accuracy in Open Source Compliance: Unveiling the Missing Piece of Software Composition Analysis Tools

Open source software (OSS) is integral to modern software development, offering flexibility, cost-effectiveness, and accelerated innovation but ensuring adherence with the attached licenses is a critical concern for all organizations with the use of these components because they impose certain obligations and restrictions on the use, modification, distribution, and sharing of software.

By Kristen Bianchi
June 5, 2023
No comments
ChatGPT and the New Age of Coding: Safeguarding Your Organizations IP
CHATGPT OPEN SOURCE COMPLIANCE
ChatGPT and the New Age of Coding: Safeguarding Your Organizations IP

The emergence of ChatGPT, GitHub Copilot, and Tabnine, as powerful tools in software development, has significantly changed how developers approach coding. By leveraging AI, these models accelerate coding tasks and enhance creativity, but they also raise potential concerns related to open source vulnerabilities and license infractions.

By Kristen Bianchi
May 22, 2023
No comments
Threatrix
OPEN SOURCE COMPLIANCE OPEN SOURCE LICENSING
Developers’ Extensive Adoption of Open Source Snippets

Open source snippets play a crucial role in modern software development, enabling developers to leverage existing code from open source projects. Let’s delve into the concept of code snippets or fragments, why developers use them, their frequency of usage, how they are embedded into project source code, and the significance of granular detection in Software […]

By Kristen Bianchi
May 15, 2023
No comments
The Software Supply Chain is Insecure without Proof of Provenance (POP)
SOFTWARE SUPPLY CHAIN SECURITY
The Software Supply Chain is Insecure without Proof of Provenance (POP)

As the software supply chain becomes increasingly complex in today’s interconnected world, securing it becomes more challenging. Supply chain attacks have become more frequent and sophisticated. Organizations must ensure their software is free from open source vulnerabilities while understanding the obligations of the attached licenses.

By Kristen Bianchi
March 6, 2023
No comments
Open Source Snippet Level License Detection & Why it Matters
OPEN SOURCE COMPLIANCE OPEN SOURCE LICENSING
Open Source Snippet Level License Detection & Why it Matters

Open-source software is becoming increasingly popular in modern software development, and for good reason. Open-source components can save development time and reduce costs, making it a necessary option for developers within companies of all sizes. However, using open source also presents new compliance challenges with the licenses attached to the open source.

By Kristen Bianchi
March 2, 2023
No comments
    ...