Open source software (OSS) powers much of the technology we rely on today, speeding the pace of innovation and enabling unprecedented collaboration on new product development. And one of the most important and often overlooked aspects of open source software is knowing what software you can legally use, in which situations, and with what requirements….
Continue ReadingThe Importance of Software Security in the FinTech Industry
In the FinTech industry, security and trust are paramount. Financial Technology providers, also known as FinTech companies, have enabled consumers worldwide to bank online, providing digital banking and financial services. Yet as we’ve grown accustomed to doing business online, cybercriminals have also grown accustomed to accessing sensitive information, deploying an increasding number of tactics to…
Continue ReadingThe Importance of Application Security for Businesses Using Payment Processing
Modern businesses use payment processing systems for a variety of reasons, from customer convenience to integration with other software like accounting software, customer databases, and sales platforms. In fact, the payment processing solutions market is on pace to reach over $190 billion by 2030, with thousands of payment processors offering software and services to do…
Continue ReadingApplication Security and Compliance – A Guide for Startups and SMBs
Building and scaling a technology product means constantly prioritizing competing demands. Growing companies have urgent development, product, and sales needs, and meeting those needs is an IT leader’s first responsibility. This often leaves little time and few resources for achieving security and compliance goals. Startups and small businesses rarely prioritize these as a strategic, value-generating…
Continue ReadingAdvanced Governance in SCA
Governance in Software Composition Analysis Governance in SCA solutions is an often overlooked yet extremely powerful feature set that can significantly improve a company’s supply chain security, and legal compliance. Governance or Governance Policies consist of the ability to create rules which restrict open source packages based on certain criteria. The result of running these…
Continue ReadingSOOS Community Edition is Totally Free!
SOOS’s new Community Edition is a totally free version of our software composition analysis (SCA) tool available to educational users and all developers working on open source projects. That’s FREE, as in beer. Free Vulnerability Scanner Now you can access the most practical and effective supply chain security tool available, at no cost. Identify and…
Continue ReadingWhat is Software Composition Analysis?
Software is only as safe as the code used to build it. Today, more than 90% of all new software is built using open source code, which can contain unknown risks and dependencies. Software Composition Analysis is a critical tool in reducing risks with third party packages. SOOS’s Software Composition Analysis (SCA) tools mitigate this…
Continue ReadingSOOS Year in Review
We’ve had an exciting year at SOOS. We want to thank all of our customers for a great 2022, and an even better 2023!
Continue ReadingSBOM 101: What is an SBOM? Why are they important?
SBOM stands for “software bill of materials.” At its most simplistic level, an SBOM is a list of “ingredients” that describes the components in a software application. More precisely (per the NTIA), a SBOM is a “complete, formally structured list of components, libraries and modules that are required to build a given piece of software…
Continue ReadingSBOMs to Be Required for Software Developers Who Do Business with the Federal Government
In May of 2021, the Biden Administration issued a new and aggressive mandate to all government agencies to ratchet up cybersecurity. As a result, we can expect to see an SBOM requirement for all software developers doing business with the Federal Government. EO 14028, The Executive Order Improving the Nation’s Cybersecurity, is a broad and…
Continue Reading