Feb 04, 2025/2 min read

Understanding the DeepSeek model license: Balancing openness and responsibility

By Rich Kosinski

Tags: SCA, M&A, Secure the Software Supply Chain, OSS License Compliance

Oct 24, 2024/3 min read

Understanding generative AI risks in software development

By Phil Odence

Tags: SCA, M&A, Secure the Software Supply Chain, OSS License Compliance

Jul 24, 2024/3 min read

Once and future code snippets: How AI reignites risk

By Phil Odence

Tags: SCA, M&A, Secure the Software Supply Chain

Jan 16, 2024/3 min read

Mergers and acquisitions insurance

By Steven Power

Tags: M&A

Dec 13, 2023/4 min read

Making intelligent tradeoffs in software due diligence

By Phil Odence

Tags: SCA, M&A, Compliance, Manage Security Risks, OSS License Compliance

Nov 21, 2023/5 min read

Audited vs. automated: What your automated open source tool isn't seeing

By Susan Miller, Rich Kosinski, Don Mulrenan

Tags: SCA, M&A, Build Security into DevOps, OSS License Compliance

Oct 27, 2023/3 min read

SBOMs and SPDX: Now and in the future

By Gary O’Neall

Tags: M&A, Secure the Software Supply Chain, OSS License Compliance

Oct 13, 2023/3 min read

The hidden business risks of technical debt in mergers and acquisitions

By Phil Odence

Tags: M&A, Manage Security Risks, OSS License Compliance

Sep 21, 2023/3 min read

From diligence to integration: How software audits inform post-close M&A strategies

By Phil Odence

Tags: M&A, OSS License Compliance

Sep 08, 2023/2 min read

Black Duck audits reporting update: Streamlined view of risks and remediation steps

By Phil Odence

Tags: M&A, Compliance

Aug 25, 2023/4 min read

The parallels of AI and open source in software development

By Phil Odence

Tags: M&A, Artificial Intelligence, Compliance, Manage Security Risks, OSS License Compliance

Aug 11, 2023/1 min read

The rise of AI in software development

By Phil Odence

Tags: M&A, Artificial Intelligence, Compliance, Manage Security Risks, OSS License Compliance

Jul 28, 2023/3 min read

Software due diligence for PE & VC investors

By Zvi Levitas

Tags: M&A, Compliance, OSS License Compliance

Jul 14, 2023/2 min read

Why nontechnical organizations need due diligence

By Don Mulrenan

Tags: M&A, Compliance, Manage Security Risks, OSS License Compliance

Jun 23, 2023/1 min read

FDA: SBOMs requirement for connected medical devices

By Julie Courtnay

Tags: M&A, Manage Security Risks, OSS License Compliance

Jun 08, 2023/4 min read

Software quality: Diligence prep for sellers

By Chris Boyd

Tags: M&A, Compliance, Manage Security Risks, OSS License Compliance

May 26, 2023/2 min read

Connecting the dots: Development + business risk + due diligence

By Phil Odence

Tags: M&A, Compliance, Manage Security Risks, OSS License Compliance

May 11, 2023/2 min read

The importance of software due diligence for private equity firms

By Umer Palla

Tags: M&A, OSS License Compliance

Apr 27, 2023/3 min read

Software due diligence in M&A: Key considerations and risks

By Kevin Collins

Tags: M&A, OSS License Compliance

Apr 13, 2023/2 min read

Black Duck SCA vs. Black Duck Audit Services

By Steven Power

Tags: M&A, OSS License Compliance

Mar 23, 2023/5 min read

Assessing design quality for better software due diligence

By Ashwin Ala

Tags: M&A, Manage Security Risks

Mar 10, 2023/3 min read

Static analysis + penetration testing = More than the sum of their parts

By Phil Odence

Tags: M&A, Security News & Trends

Feb 24, 2023/1 min read

The M&A Open Source Risk Number

By Phil Odence

Tags: M&A, OSS License Compliance

Feb 09, 2023/3 min read

Navigating software due diligence with a Black Duck Audit

By Steven Power

Tags: M&A, Manage Security Risks, OSS License Compliance

Jan 25, 2023/1 min read

Software risks and technical debt: The role of process in determining good software

By Phil Odence

Tags: M&A, OSS License Compliance

Jan 20, 2023/3 min read

Prioritizing open source vulnerabilities in software due diligence

By Mike McGuire

Tags: M&A, OSS License Compliance

Dec 08, 2022/3 min read

SBOM: What’s in your software ingredients list?

By Black Duck Editorial Staff

Tags: M&A, Secure the Software Supply Chain, OSS License Compliance

Nov 24, 2022/5 min read

Custom and variant licenses: What’s in the fine print?

By Phil Odence

Tags: M&A, OSS License Compliance

Nov 11, 2022/3 min read

The top three differences between an open source audit and an open source scan

By Umer Palla

Tags: M&A, OSS License Compliance

Oct 28, 2022/4 min read

Avoid anaphylactic shock by auditing dependencies in software due diligence

By Black Duck Editorial Staff

Tags: M&A, OSS License Compliance

Oct 13, 2022/3 min read

I have my Black Duck Audit reports; What’s next?

By Black Duck Editorial Staff

Tags: M&A, OSS License Compliance

Sep 23, 2022/3 min read

Commercial software licenses in software due diligence

By Black Duck Editorial Staff

Tags: M&A, OSS License Compliance

Sep 07, 2022/4 min read

Understanding the hows and whys of open source audits

By Steven Zimmerman

Tags: M&A, OSS License Compliance

Aug 18, 2022/3 min read

The four most important aspects of software due diligence audits

By Phil Odence

Tags: M&A, Manage Security Risks, OSS License Compliance

Jul 19, 2022/4 min read

Interview-based due diligence or software audits?

By Zvi Levitas

Tags: M&A, Manage Security Risks, OSS License Compliance

Jul 13, 2022/1 min read

AppSec Decoded: Get the most out of your open source software

By Black Duck Editorial Staff

Tags: M&A, Secure the Software Supply Chain

Jun 22, 2022/2 min read

M&A, trust in software, and a good night’s sleep

By Phil Odence

Tags: M&A, Manage Security Risks, OSS License Compliance

May 10, 2022/3 min read

Black Duck Open Source Audits: Working through licensing issues like a pro

By Phil Odence

Tags: M&A, Manage Security Risks, OSS License Compliance

Jan 19, 2022/3 min read

Bob Saget and open source license compliance

By Phil Odence

Tags: SCA, M&A, Security News & Trends, Secure the Software Supply Chain, OSS License Compliance

Jan 01, 2022/2 min read

Software due diligence: The home inspection of tech M&A

By Phil Odence

Tags: M&A, Manage Security Risks, OSS License Compliance

Jun 24, 2021/4 min read

How an open source software audit works

By Phil Odence

Tags: M&A, OSS License Compliance

Jun 17, 2021/1 min read

Reduce open source risk in M&A with software due diligence

By Black Duck Editorial Staff

Tags: SCA, M&A, OSS License Compliance

May 09, 2021/5 min read

Open source license compliance and dependencies: Peeling back the licensing layers

By Matt Jacobs

Tags: M&A, OSS License Compliance

Apr 14, 2021/3 min read

The 411 on Stack Overflow and open source license compliance

By Phil Odence

Tags: M&A, OSS License Compliance

Sep 23, 2020/5 min read

Open source licenses: No license, no problem? Or … not?

By Matt Jacobs

Tags: SCA, M&A, OSS License Compliance

Jul 04, 2020/5 min read

Open source audits: The secret ingredient for successful M&A

By Shandra Gemmiti

Tags: M&A, Manage Security Risks, OSS License Compliance

Oct 28, 2019/7 min read

The due diligence of a deal

By Phil Odence

Tags: M&A, OSS License Compliance

Sep 11, 2019/2 min read

Let’s Talk Licenses: Beware the Beerware License

By Phil Odence

Tags: M&A, OSS License Compliance

Jun 25, 2019/3 min read

Top 3 operational open source risk factors

By Phil Odence

Tags: M&A, OSS License Compliance

Dec 18, 2018/3 min read

Next-generation audit reports: Enhanced visibility into open source risks in M&A transactions

By Phil Odence

Tags: M&A, OSS License Compliance

Oct 09, 2018/2 min read

Why you need to perform open source due diligence in an M&A transaction

By Fred Bals

Tags: M&A, OSS License Compliance

Jan 23, 2018/2 min read

When software is the company, tech due diligence is critical

By Fred Bals

Tags: SCA, M&A, OSS License Compliance

Sep 13, 2017/3 min read

So Apache broke up with Facebook. How does that affect you?

By Black Duck Editorial Staff

Tags: M&A, Security News & Trends, OSS License Compliance

Jun 21, 2017/2 min read

3 permissive licenses and why they deserve a little respect

By Black Duck Editorial Staff

Tags: M&A, OSS License Compliance

Apr 04, 2017/3 min read

Cloudera IPO: Risk for cyber attacks, lawsuits, and loss of IP?

By Fred Bals

Tags: M&A, Manage Security Risks, OSS License Compliance

Feb 23, 2017/6 min read

What is dual licensing? 3 software licensing models to consider

By Matt Jacobs

Tags: M&A, OSS License Compliance

Nov 06, 2016/5 min read

OSS warranties and indemnities in technology transactions

By Black Duck Editorial Staff

Tags: M&A, OSS License Compliance

Oct 05, 2016/4 min read

Guide to open source licenses

By Black Duck Editorial Staff

Tags: M&A, OSS License Compliance

Sep 19, 2016/6 min read

AGPL: Out of the shadows

By Black Duck Editorial Staff

Tags: M&A, Security News & Trends, OSS License Compliance

Feb 22, 2016/3 min read

Security risks in mergers and acquisitions

By Black Duck Editorial Staff

Tags: M&A, Manage Security Risks, OSS License Compliance

May 15, 2014/2 min read

Software due diligence: Before you buy it, look under the hood

By Matt Jacobs

Tags: M&A, OSS License Compliance