Black Duck Open Hub, formerly Ohloh, is a website which provides a web services suite and online community platform that aims to index the open-source software development community. It was founded by former Microsoft managers Jason Allen and Scott Collison in 2004 and joined by the developer Robin Luckey. As of 15 January 2016, the site lists 669,601 open-source projects, 681,345 source control repositories, 3,848,524 contributors and 31,688,426,179 lines of code.

Wikipedia
Black Duck Software
Black Duck Software
Blog Post
  • Our Halloween hauntings continue in this week’s Open Source Insight with a spooky new infographic about open source vulnerabilities. We’re also gearing up for our user conference coming up this November (FLIGHT 2017), so read on to learn why you can't miss it or the cybersecurity sessions in store for attendees. The Equifax data breach continues to be top of mind for security professio...

Black Duck Software
Black Duck Software
Blog Post
  • Join us at FLIGHT 2017 to explore security in the age of open source in Boston, November 7-9. With the Equifax data breach top of mind, everyone is focusing on securing and managing open source code. The open source community is driving incredible advancements in technology, but the growing percentage of open source in modern applications means that organizations must secure and manage...

Black Duck Software
Black Duck Software
SlideShare Presentation
  • Our Halloween hauntings continue in this week’s Open Source Insight with a spooky new infographic about open source vulnerabilities. We’re also gearing up for our user conference coming up this November (FLIGHT 2017), so read on to learn why you can't miss it or the cybersecurity sessions in store for attendees. The Equifax data breach continues to be top of mind for security professionals, compl...

Black Duck Software
Black Duck Software
Blog Post
  • Was Equifax First Hit with a Non-Targeted Attack? The details of the Equifax breach will unfold slowly over the next several weeks and months. One interesting detail came out recently when the company reported that “an actor interacted with our server on March 10, 2017.” That’s four days after the vulnerability was reported and three days after a researcher released an exploit to th...

Black Duck Software
Black Duck Software
Blog Post
  • If you’re charged with cybersecurity in your organization and haven’t registered for Black Duck FLIGHT 2017, you need to reconsider your decision today. FLIGHT 2017 is a unique open source business, technical, and educational conference packed into three days that takes place this November 7-9th in Boston, MA.

Black Duck Software
Black Duck Software
Landing Page

General Counsel & Open Source Software | Black Duck Software

 
Black Duck Software
Black Duck Software
Blog Post
  • Security technology is changing for the better as the container deployment model makes it easier to automate application security. This means that as more enterprises deploy containers to public and private clouds they are able to incorporate security automation into their continuous integration and deployment (CI/CD) pipeline.

Black Duck Software
Black Duck Software
SlideShare Presentation
  • On this Friday the 13th, the paraskevidekatriaphobia edition of Open Source Insight delves into scary software exploits like jeep hacking and data breaches. October is Cybersecurity Awareness Month, but how aware and cybersecure are the businesses holding our personal data? Black Duck joins forces with Google to clean up software supply chains. If it’s not one thing it’s two things for Equifax. T...

Black Duck Software
Black Duck Software
Blog Post
  • On this Friday the 13th, the paraskevidekatriaphobia edition of Open Source Insight delves into scary software exploits like jeep hacking and data breaches. October is Cybersecurity Awareness Month, but how aware and cybersecure are the businesses holding our personal data? Black Duck joins forces with Google to clean up software supply chains. If it’s not one thing it’s two things for...

Black Duck Software
Black Duck Software
Blog Post
  • In less than a month, FLIGHT 2017, Black Duck's user conference, will return to the Seaport Hotel and World Trade Center in Boston, Massachusetts. We're delighted to announce that notorious Jeep hackers Chris Valasek and Dr. Charlie Miller will take the stage as keynote speakers. They'll address the future of the security of things, and the challenges and opportunities we'll face as ma...

Black Duck Software
Black Duck Software
Blog Post
  •   This post was co-authored by Sheryl Sage, Director of Strategic Alliances   Containers offer many advantages over monolithic applications, packaged as VMs. Most importantly, a container image is immutable, easily built and deployed without reliance on permanent infrastructure. Nevertheless, containers are a challenge to IT operations teams, who need full visibility and control o...

Black Duck Software
Black Duck Software
Blog Post
  • In today’s application development world, developers rely heavily on open source to build applications smarter and bring them to market faster. The benefits of open source are clear, but dependence on open source also exposes applications to open source vulnerabilities and license compliance risks.

Black Duck Software
Black Duck Software
Blog Post
  • If you are relaxing because you have your open source usage under control, beware. There is another increasingly common type of ungoverned third-party code that your engineers are using in your products: Web APIs.

Black Duck Software
Black Duck Software
Landing Page

General Counsel & Open Source Software | Black Duck Software

 
Black Duck Software
Black Duck Software
Blog Post
  • COSRI research director Chris Fearon makes the case that Equifax was either unaware of or slow to respond to reports of known critical vulnerabilities in their system, and as a result had not upgraded to safer versions. That opinion was later proven out by Congressional hearings into the breach, as Fred Bals relates in his blog on whether SAST and DAST fell down on the job for Equifax....

Black Duck Software
Black Duck Software
SlideShare Presentation
  • COSRI research director Chris Fearon makes the case that Equifax was either unaware of or slow to respond to reports of known critical vulnerabilities in their system, and as a result had not upgraded to safer versions. That opinion was later proven out by Congressional hearings into the breach, as Fred Bals relates in his blog on whether SAST and DAST fell down on the job for Equifax. Black Duck...

Black Duck Software
Black Duck Software
Blog Post
  • In my previous post I wrote about how the changing situation around open source management has pushed the need for an exception based review process for open source. In my opinion, it's the only process that really works. And by “works,” I mean scales across a large enterprise in which the use of open source is common. Exception based is a key element in the “fast & simple” approach.

Black Duck Software
Black Duck Software
Blog Post
  • On March 8, 2017, the U.S. Department of Homeland Security, Computer Emergency Readiness Team (“U.S. CERT”) sent Equifax and many others a notice of the need to patch a particular vulnerability in certain versions of software…. Equifax used that software, which is called “Apache Struts,” in its online disputes portal, a website where consumers can dispute items on their credit report...

Black Duck Software
Black Duck Software
Blog Post
  • For nine years, the Black Duck Open Source Rookies of the Year awards have recognized some of the most innovative and influential open source projects launched during the previous year. We sat down with Founder and CMO Masha McConaghy to hear the exciting story of one of this year's rookies: BigchainDB.

Black Duck Software
Black Duck Software
SlideShare Presentation
  • People at Black Duck give their all to their jobs, but it's also a fun and fulfilling place to work. Black Duck boasts the amenities you’d expect from a tech company — like free snacks and craft beer taps — and regular, novel, companywide events like Waffle Wednesday, Quackaoke (Black Duck’s version of karaoke), a special summer Tiki Bar and other engaging activities. In the local community Blac...

Black Duck Software
Black Duck Software
Blog Post
  • On September 7th Equifax announced a major data breach affecting 143 million customers. The breach was the result of a Remote Code Execution (RCE) attack that exploited an vulnerability in Apache Struts software — an open source framework for creating web applications. On the same day as the breach announcement, Apache Struts published details of CVE- 2017-12611 – the fourth in a serie...

Black Duck Software
Black Duck Software
Blog Post
  • This issue of Open Source Insight looks at how data leaks on Amazon servers may have exposed the personal information of 198 million American voters and 14 million Verizon customers. Is the federal cybersecurity infrastructure keeping up with threats? Why do some many companies have problems keeping their software up to date? Are vulnerability tools up to snuff?  All this and more open...

Black Duck Software
Black Duck Software
Blog Post
  • The cries for revolt rang loudly within the open source community, as discussed in my prior post on this subject, and there is apparently insufficient soundproofing at Facebook headquarters to shield its denizens from the cacophony. Facebook has announced that it will release its popular open source React, Jest, Flow and Immutable.js projects under the MIT license, abandoning the Faceb...

Black Duck Software
Black Duck Software
SlideShare Presentation
  • This issue of Open Source Insight looks at how data leaks on Amazon servers may have exposed the personal information of 198 million American voters and 14 million Verizon customers. Is the federal cybersecurity infrastructure keeping up with threats? Why do some many companies have problems keeping their software up to date? Are vulnerability tools up to snuff?  All this and more open source ...

Black Duck Software
Black Duck Software
Blog Post
  • The General Data Protection Regulation (GDPR) will be enforced starting on May 25, 2018. One of the requirements of the GDPR is that many companies who handle personal data of EU citizens will need to appoint either an employee or contractor to be their Data Protection Officer.

Black Duck Software
Black Duck Software
Blog Post
  • American Benjamin Franklin, Philadelphia – 1735. Earlier this month the consumer reporting agency Equifax disclosed a major cybersecurity incident potentially impacting approximately 150 million U.S., Canadian and U.K. consumers.

Out-Market Your Competitors?

Get complete competitive insights on over 2.2 million companies to drive your marketing strategy.

Create Free Account Log in

By signing up, you agree to the Terms of Service and Privacy Policy.

Out-Market Your Competitors

Get complete competitive insights on over 2.2 million companies to drive your marketing strategy.

Create Free Account

Already a user?  Log in

By signing up, you agree to the Terms of Service and Privacy Policy.