FOSSA

In October 2024, CERT-In (the Indian Computer Emergency Response Team) released a new set of SBOM program guidelines. Our blog analyzes CERT-In's guidance, including: ?? Suggestions for implementing the best practices covered in the publication ?? Comparisons to SBOM guidance from other regulatory bodies ?? Recommended areas for automation https://lnkd.in/e5CCpt_a

Thanks to everyone who joined us and the great Heather Meeker earlier this month to celebrate the release of the fourth edition of "Open Source for Business," Heather's go-to guide on managing open source license compliance. Our team had a great time moderating a fireside chat with Heather and meeting in-house counsel from across the Bay Area — we hope you enjoyed the event as well! (And, a special thank you to O'Melveny & Myers LLP for hosting!)

The FOSSA team just concluded our company gathering in San Diego, where we shared laughs and important conversations about the future of vulnerability, license compliance, and SBOM management... and we gave our CEO a buzz-cut!? Thanks to everyone across our organization who participated — we look forward to sharing several exciting product innovations with our customers in the months ahead.

So, you've generated an #SBOM — now, what's the best way to distribute it? FOSSA Principal Product Manager Cortez Frazier Jr discusses four essential strategies for effective SBOM sharing. https://lnkd.in/e9DTFVzg

?? Open Source for Business Fourth Edition: Book Release Party! ?? We're thrilled to share that we're teaming with leading global open source license compliance expert Heather Meeker to celebrate the release of the newest edition of Heather's go-to guide on OSS license compliance management. Join us on Feb. 12 in Menlo Park, California (at the offices of O'Melveny & Myers LLP) for book signings, drinks, apps, networking, and a fireside chat with Heather. Get details and RSVP at the link below. https://lnkd.in/ejE3_Cvy

?? Open Source for Business Fourth Edition: Book Release Party! ?? We're thrilled to share that we're teaming with leading global open source license compliance expert Heather Meeker to celebrate the release of the newest edition of Heather's go-to guide on OSS license compliance management. Join us on Feb. 12 in Menlo Park, California (at the offices of O'Melveny & Myers LLP) for book signings, drinks, apps, networking, and a fireside chat with Heather. Get details and RSVP at the link below. https://lnkd.in/ejE3_Cvy

DORA — the European Union's Digital Operational Resilience Act — took effect last week. Here's what EU financial entities need to know about the regulation's SBOM (software bill of materials) requirements. https://lnkd.in/e3N6vbsD

In case you missed it: Here's some of what our product and engineering teams have been working on this winter — several exciting new features to help our customers manage #SBOM, open source license compliance, and more. https://lnkd.in/e3dYS2wS

We're honored to be recognized as a top employer for 2025!

Are you ready for new requirements in PCI DSS to take effect? Here's what you need to know about 6.3.2, which will require PCI-covered entities to maintain a software inventory — and use that inventory to facilitate vulnerability management. #SBOM https://lnkd.in/ekdBNRdw