Search
Contactez-nous Suivez-nous sur Twitter En francais English Language
 

De la Théorie à la pratique











Freely subscribe to our NEWSLETTER

Newsletter FR

Newsletter EN

Vulnérabilités

Unsubscribe

Flexera Reimagines Software Supply Chain Safety – Embeds Open Source Security Scanning into Software Development Build Process

May 2017 by Marc Jacob

Flexera announced it’s reimagining software supply chain safety. Flexera’s the first-in-industry to embed open source security into the heart of the software development build process with automatic analysis detection. It will help keep the software supply chain secure by enabling 100,000 developers around the world to sell clean products, free of open source vulnerabilities and license compliance risk.

FlexNet Code Aware is the leading automated, open source risk assessment and package discovery solution helping software developers quickly scan products for security and Intellectual Property (IP) compliance risks. FlexNet Code Aware is now integrated with Flexera’s InstallShield and InstallAnywhere solutions. InstallShield is the global standard used by 100,000+ developers for creating Windows desktop, server and cloud installers on more than 500 million devices. InstallAnywhere is the leading solution for creating multiplatform installation experiences for physical, virtual and cloud environments.

By embedding FlexNet Code Aware into InstallShield and InstallAnywhere, open source security scanning is now a standard part of the software build process, helping developers discover and assess IP and vulnerability risks before products ship. This powerful, combined solution sets the foundation for a vulnerability-free build, ensuring a smooth, error-free installation.

Eliminating Open Source Risk Early – Really Matters

The use of open source components in software development is skyrocketing. A decade ago, developers were using less than 100 open source libraries per release. Today, some industries are using more than 1,000. In addition – developers are often not aware of the risks contained in the open source code they use.

According to Flexera data, as much as 50 percent of code used in development is open source – code developers didn’t write themselves. And as a whole, developers are only aware of up to four percent of the third-party software that comprises their products. As open source dependency increases, developers need to be good corporate citizens and truly understand the vulnerability risk and compliance requirements they are inheriting from the open source code they use. FlexNet Code Aware – now integrated with InstallShield and InstallAnywhere, identifies the libraries developers are using, and what the associated licensing terms are to ensure compliance.




See previous articles

    

See next articles