Blog

  • Open Source Compliance: The Carrot and the Stick

    8 December 2016

    By Patricia Johnson

    open source compliance

    Open source has become central in how companies develop software products as it dramatically reduces time to market. The surprising thing is that, despite its high usage and popularity, many people in our industry are still nervous when it comes to using open source. Especially around open source compliance.

    This hesitance comes mainly due to the misunderstanding how open source compliance is enforced. So, what can we as a community do to allay their fears and promote the benefits of open source compliance?


    Read More
  • story open source management

    A day in the life of Dave and Mike

    Dave is a lean, mean highly organized machine. Whereas Mike is more relaxed about his affairs. Consequently, you can probably guess who’s usually ahead of the curve when it comes to dealing with challenging situations.

    Believe it or not, these two guys can tell us a lot about the benefits of using an automated open source management solution.


    Read More
  • scanners2

    Back in 2002, a startup named Black Duck Software pioneered an automated way to search for and identify open source code that was introduced by developers. In a nutshell, the method was based on scanning the code and identifying pieces of code (aka snippets) that resemble code that appears in known open source components. The user is then alerted to the similarity and should check each such instance. Soon, a few other vendors offered a code scanning solution to the open source discovery challenge (e.g., Protecode, Palamida, and Open Logic).

    Over time, it became clear that scanning is not as easy and automated as one may think. In addition, this technology no longer fits with today’s agile development environment.


    Read More
  • The Five Founding Fathers of Open Source

    22 November 2016

    By Sivan Michaeli

    thanksgiving_software_freedom

    It’s that time of year again, Thanksgiving!

    Just as we remember our forefathers who came to the New World in search of freedom, let’s spare a thought for those Open Source pioneers who helped secure the freedom to use, edit and distribute software that we all enjoy today.


    Read More
  • manualvsautomatic

    Do you remember in high school it seemed like all the cool kids seemed to be speaking in their own code? Well, it’s a bit like that in DevOps circles today.

    Everybody’s talking about Continuous Integration this, Continuous Deployment that. And who knows, you might even hear some people mentioning Application Release Automation.

    However, how do you know they’re ‘walking the walk’, when it comes to doing DevOps, and not just ‘talking the talk’?


    Read More
  • IoT Attacks – Rise of the Machines

    10 November 2016

    By Jason Levy

    iot attacks

    The number of IoT devices is rising, and rising fast. In fact, it’s predicted by 2020 we’ll have over 34 billion such devices!

    However, this growth in IoT devices is not being accompanied by an improvement in cyber security standards, which has resulted in some pretty nasty IoT attacks of late.

    Therefore, without an improvement in cyber security standards, are we witnessing the rise of the machines?


    Read More
  • GitLab security vulnerability

    The software security sirens are sounding again, and this time it’s a critical security vulnerability affecting GitLab, one of the open source communities favorite Git repository hosting services.

    Here’s everything you need to know about the impact of GitLab’s security vulnerability, and what you can do to protect yourself against it.


    Read More
  • The Real Impact of the WordPress-Wix Fiasco

    3 November 2016

    By Sivan Michaeli

    WordPress-Wix Fiasco

    In the past week, the Internet has been buzzing about WordPress co-Founder Matt Mullenweg’s accusation surrounding Wix’s apparent code theft.

    Cut long story short, Wix decided to use an open source project for their new product, which was previously released by Automattic (the company behind WordPress). Fast forward four and a half months, Mullenweg comes out all guns blazing, claiming Wix had not complied with the terms under which their open source project was licensed. What was this license, you may ask. Well, as you might have guessed, it was the famous (or infamous) GNU GPL v2.


    Read More
  • azure_vs_aws

    Due to the increased agility and reduced costs offered by moving applications from data centers to the cloud, the infrastructure as a service market has really taken off. And as it stands, there are two cloud providers leading the market. Amazon AWS and Microsoft Azure.

    So, let’s find the answer to the question which is on the tips of everyone’s tongues. ‘AWS vs Azure. Which cloud provider comes out on top?’


    Read More
  • Dirty Cow

    Once again, a serious vulnerability has been found in the kernel of the OS which most server and smart phones on the planet run on – Linux.

    Not only that, the Dirty Cow vulnerability has been around for 9 years and there are actual indications that its being exploited in the wild.

    So, here’s everything you need to know about Dirty Cow and how you can deal with it.


    Read More