SCANOSS
@scanoss.bsky.social
Open source risk management made simple. Scan it. Know it. Fix it. Powered by the largest OSS database on the planet.
Even the strongest locks can be picked, the same is true for encryption.
Quantum computing is changing how we think about security and trust.
Alan Facey explores why visibility is key to resilience.
www.scanoss.com/post/from-ou...
Quantum computing is changing how we think about security and trust.
Alan Facey explores why visibility is key to resilience.
www.scanoss.com/post/from-ou...
From Our CEO: What Happens When Encryption Expires?
Even the strongest locks can be picked. The same is true for encryption.For decades, we’ve treated encryption as eternal. Once implemented, it quietly sat in the background, unquestioned and sometimes...
www.scanoss.com
November 4, 2025 at 1:45 PM
Even the strongest locks can be picked, the same is true for encryption.
Quantum computing is changing how we think about security and trust.
Alan Facey explores why visibility is key to resilience.
www.scanoss.com/post/from-ou...
Quantum computing is changing how we think about security and trust.
Alan Facey explores why visibility is key to resilience.
www.scanoss.com/post/from-ou...
In two days at OSPOlogy Live Lyon, Alan Facey will challenge the SCA status quo, while Jeronimo Ortiz shows how open datasets make SBOMs smarter.
We’re ready to disrupt (politely).
Event → community.linuxfoundation.org/events/detai...
We’re ready to disrupt (politely).
Event → community.linuxfoundation.org/events/detai...
November 3, 2025 at 2:54 PM
In two days at OSPOlogy Live Lyon, Alan Facey will challenge the SCA status quo, while Jeronimo Ortiz shows how open datasets make SBOMs smarter.
We’re ready to disrupt (politely).
Event → community.linuxfoundation.org/events/detai...
We’re ready to disrupt (politely).
Event → community.linuxfoundation.org/events/detai...
If you only read one thing this month — make it the SCANOSS Roundup.
Smarter integrations, open data, and lessons from the supply chain.
Read it here →https://www.linkedin.com/pulse/case-you-missed-scanoss-monthly-roundup-october-2025-scanoss-jrbkf
Smarter integrations, open data, and lessons from the supply chain.
Read it here →https://www.linkedin.com/pulse/case-you-missed-scanoss-monthly-roundup-october-2025-scanoss-jrbkf
October 31, 2025 at 1:33 PM
If you only read one thing this month — make it the SCANOSS Roundup.
Smarter integrations, open data, and lessons from the supply chain.
Read it here →https://www.linkedin.com/pulse/case-you-missed-scanoss-monthly-roundup-october-2025-scanoss-jrbkf
Smarter integrations, open data, and lessons from the supply chain.
Read it here →https://www.linkedin.com/pulse/case-you-missed-scanoss-monthly-roundup-october-2025-scanoss-jrbkf
Next week, Lyon becomes the capital of open governance.
Alan Facey, Jeronimo Ortiz, and Virginia del Olmo join OSPOlogy Live to prove that “open data” isn’t just a slogan.
Full agenda → community.linuxfoundation.org/events/detai...
Alan Facey, Jeronimo Ortiz, and Virginia del Olmo join OSPOlogy Live to prove that “open data” isn’t just a slogan.
Full agenda → community.linuxfoundation.org/events/detai...
October 30, 2025 at 9:55 AM
Next week, Lyon becomes the capital of open governance.
Alan Facey, Jeronimo Ortiz, and Virginia del Olmo join OSPOlogy Live to prove that “open data” isn’t just a slogan.
Full agenda → community.linuxfoundation.org/events/detai...
Alan Facey, Jeronimo Ortiz, and Virginia del Olmo join OSPOlogy Live to prove that “open data” isn’t just a slogan.
Full agenda → community.linuxfoundation.org/events/detai...
For decades, software vendors built customer retention around control.
Closed ecosystems, proprietary formats, and complex licences kept users dependent.
Julian Coccia, explores how the balance has shifted.
medium.com/@scanoss/why...
Closed ecosystems, proprietary formats, and complex licences kept users dependent.
Julian Coccia, explores how the balance has shifted.
medium.com/@scanoss/why...
Why Customer Freedom Beats Vendor Lock-In
For decades, vendor lock-in was the cornerstone of proprietary software business models. Companies built digital moats around their…
medium.com
October 29, 2025 at 9:39 AM
For decades, software vendors built customer retention around control.
Closed ecosystems, proprietary formats, and complex licences kept users dependent.
Julian Coccia, explores how the balance has shifted.
medium.com/@scanoss/why...
Closed ecosystems, proprietary formats, and complex licences kept users dependent.
Julian Coccia, explores how the balance has shifted.
medium.com/@scanoss/why...
The Digital Resilience Forum is tomorrow in Madrid.
Strong discussions on open source, policy, and Europe’s path to digital sovereignty.
Proud to sponsor.
#DigitalResilienceForum
Strong discussions on open source, policy, and Europe’s path to digital sovereignty.
Proud to sponsor.
#DigitalResilienceForum
October 28, 2025 at 7:05 PM
The Digital Resilience Forum is tomorrow in Madrid.
Strong discussions on open source, policy, and Europe’s path to digital sovereignty.
Proud to sponsor.
#DigitalResilienceForum
Strong discussions on open source, policy, and Europe’s path to digital sovereignty.
Proud to sponsor.
#DigitalResilienceForum
Tomorrow we’re home-turf.
Julian Coccia will be at Madrid’s Digital Resilience Forum.
Come find us…or just follow the trail of cryptographic conversations.
digitalresilienceforum.com
Julian Coccia will be at Madrid’s Digital Resilience Forum.
Come find us…or just follow the trail of cryptographic conversations.
digitalresilienceforum.com
October 28, 2025 at 12:42 PM
Tomorrow we’re home-turf.
Julian Coccia will be at Madrid’s Digital Resilience Forum.
Come find us…or just follow the trail of cryptographic conversations.
digitalresilienceforum.com
Julian Coccia will be at Madrid’s Digital Resilience Forum.
Come find us…or just follow the trail of cryptographic conversations.
digitalresilienceforum.com
Tomorrow: Sean Egan joins IBM & The Linux Foundation in Kuala Lumpur for a hands-on PQC workshop on quantum-safe cryptography.
Crypto agility, not theory.
pkic.org/events/2025/...
Crypto agility, not theory.
pkic.org/events/2025/...
October 27, 2025 at 2:32 PM
Tomorrow: Sean Egan joins IBM & The Linux Foundation in Kuala Lumpur for a hands-on PQC workshop on quantum-safe cryptography.
Crypto agility, not theory.
pkic.org/events/2025/...
Crypto agility, not theory.
pkic.org/events/2025/...
How do open datasets change the way we code?
On 30 Oct, Jeronimo Ortiz will answer that at #TheiaCon 2025 — showing how visibility can be built right into your workflow.
Register → eclipse.zoom.us/webinar/regi...
On 30 Oct, Jeronimo Ortiz will answer that at #TheiaCon 2025 — showing how visibility can be built right into your workflow.
Register → eclipse.zoom.us/webinar/regi...
October 27, 2025 at 9:30 AM
How do open datasets change the way we code?
On 30 Oct, Jeronimo Ortiz will answer that at #TheiaCon 2025 — showing how visibility can be built right into your workflow.
Register → eclipse.zoom.us/webinar/regi...
On 30 Oct, Jeronimo Ortiz will answer that at #TheiaCon 2025 — showing how visibility can be built right into your workflow.
Register → eclipse.zoom.us/webinar/regi...
Encryption has an expiry date.
Sean Egan joins IBM & The Linux Foundation in Kuala Lumpur (28 Oct) to talk quantum-safe readiness.
pkic.org/events/2025/...
Sean Egan joins IBM & The Linux Foundation in Kuala Lumpur (28 Oct) to talk quantum-safe readiness.
pkic.org/events/2025/...
October 26, 2025 at 4:45 PM
Encryption has an expiry date.
Sean Egan joins IBM & The Linux Foundation in Kuala Lumpur (28 Oct) to talk quantum-safe readiness.
pkic.org/events/2025/...
Sean Egan joins IBM & The Linux Foundation in Kuala Lumpur (28 Oct) to talk quantum-safe readiness.
pkic.org/events/2025/...
Heading to #PQC2025?
Join IBM, The Linux Foundation, and SCANOSS for the CBOM Hands-On Workshop
28 Oct, 9 AM, Room 1.
#CBOM #CycloneDX #CryptoAgility #OpenSource #SCANOSS
Join IBM, The Linux Foundation, and SCANOSS for the CBOM Hands-On Workshop
28 Oct, 9 AM, Room 1.
#CBOM #CycloneDX #CryptoAgility #OpenSource #SCANOSS
October 25, 2025 at 3:44 PM
Heading to #PQC2025?
Join IBM, The Linux Foundation, and SCANOSS for the CBOM Hands-On Workshop
28 Oct, 9 AM, Room 1.
#CBOM #CycloneDX #CryptoAgility #OpenSource #SCANOSS
Join IBM, The Linux Foundation, and SCANOSS for the CBOM Hands-On Workshop
28 Oct, 9 AM, Room 1.
#CBOM #CycloneDX #CryptoAgility #OpenSource #SCANOSS
If you think we ever stop… think again.
Kuala Lumpur. Madrid. Online. Lyon. Bolzano.
Five events. Two weeks. One mission: open source risk intelligence that never sits still.
We’re all over the map. Literally.
Kuala Lumpur. Madrid. Online. Lyon. Bolzano.
Five events. Two weeks. One mission: open source risk intelligence that never sits still.
We’re all over the map. Literally.
October 24, 2025 at 2:58 PM
If you think we ever stop… think again.
Kuala Lumpur. Madrid. Online. Lyon. Bolzano.
Five events. Two weeks. One mission: open source risk intelligence that never sits still.
We’re all over the map. Literally.
Kuala Lumpur. Madrid. Online. Lyon. Bolzano.
Five events. Two weeks. One mission: open source risk intelligence that never sits still.
We’re all over the map. Literally.
Counting down to #DigitalResilienceForum in Madrid.
Our CTO Julian Coccia will join peers from across Europe to discuss cybersecurity, CRA, and open source AI.
Request your tickets here: digitalresilienceforum.com/request-your...
#DigitalResilienceForum
Our CTO Julian Coccia will join peers from across Europe to discuss cybersecurity, CRA, and open source AI.
Request your tickets here: digitalresilienceforum.com/request-your...
#DigitalResilienceForum
Request Your Ticket
We appreciate your interest in the Digital Resilience Forum! We’re excited to see you there! Thanks to the generous support of our sponsors and partners, we’re able to offer complementary access to…
digitalresilienceforum.com
October 22, 2025 at 6:05 PM
Counting down to #DigitalResilienceForum in Madrid.
Our CTO Julian Coccia will join peers from across Europe to discuss cybersecurity, CRA, and open source AI.
Request your tickets here: digitalresilienceforum.com/request-your...
#DigitalResilienceForum
Our CTO Julian Coccia will join peers from across Europe to discuss cybersecurity, CRA, and open source AI.
Request your tickets here: digitalresilienceforum.com/request-your...
#DigitalResilienceForum
We’re featured in the latest PQCA blog ahead of #PQC2025!
Sean Egan from SCANOSS joins IBM Research + The Linux Foundation to advance CBOM transparency.
Read → pqca.org/blog/2025/advancing-cryptographic-transparency-upcoming-linux-foundation-pqca-cbom-workshop-at-pkic-2025/
Sean Egan from SCANOSS joins IBM Research + The Linux Foundation to advance CBOM transparency.
Read → pqca.org/blog/2025/advancing-cryptographic-transparency-upcoming-linux-foundation-pqca-cbom-workshop-at-pkic-2025/
Advancing Cryptographic Transparency: Upcoming Linux Foundation PQCA CBOM Workshop at PKIC 2025 – Post-Quantum Cryptography Alliance
On October 28th, the Linux Foundation’s Post-Quantum Cryptography Alliance (PQCA) will host a dedicated workshop on Cryptography Bill of Materials (CBOMs) during the PKIC 2025 event in Kuala Lumpur,…
pqca.org
October 21, 2025 at 3:42 PM
We’re featured in the latest PQCA blog ahead of #PQC2025!
Sean Egan from SCANOSS joins IBM Research + The Linux Foundation to advance CBOM transparency.
Read → pqca.org/blog/2025/advancing-cryptographic-transparency-upcoming-linux-foundation-pqca-cbom-workshop-at-pkic-2025/
Sean Egan from SCANOSS joins IBM Research + The Linux Foundation to advance CBOM transparency.
Read → pqca.org/blog/2025/advancing-cryptographic-transparency-upcoming-linux-foundation-pqca-cbom-workshop-at-pkic-2025/
See how you can review and resolve open source findings instantly using SCANOSS Code Compare.
Fast, local, and developer-friendly.
Watch the full demo → youtu.be/pE29WPPmOPs
Fast, local, and developer-friendly.
Watch the full demo → youtu.be/pE29WPPmOPs
SCANOSS Code Compare in Action
YouTube video by SCANOSS
youtu.be
October 6, 2025 at 12:51 PM
See how you can review and resolve open source findings instantly using SCANOSS Code Compare.
Fast, local, and developer-friendly.
Watch the full demo → youtu.be/pE29WPPmOPs
Fast, local, and developer-friendly.
Watch the full demo → youtu.be/pE29WPPmOPs
Reposted by SCANOSS
they're putting algorithms in the algorithm
October 1, 2025 at 1:32 AM
they're putting algorithms in the algorithm
“Gray beard required.”
Our CTO Julian Coccia on building AuditCmd, a console-first auditing tool powered by SCANOSS.
AI-built, Go-coded, pure keyboard flow.
scanoss.medium.com/the-console-...
Our CTO Julian Coccia on building AuditCmd, a console-first auditing tool powered by SCANOSS.
AI-built, Go-coded, pure keyboard flow.
scanoss.medium.com/the-console-...
The Console-Based Auditing Tool I Always Dreamed Of
I always wanted a console-based auditing tool. Don’t ask me why, but I do miss the old times when coding meant living in the console, long…
scanoss.medium.com
September 24, 2025 at 12:20 PM
“Gray beard required.”
Our CTO Julian Coccia on building AuditCmd, a console-first auditing tool powered by SCANOSS.
AI-built, Go-coded, pure keyboard flow.
scanoss.medium.com/the-console-...
Our CTO Julian Coccia on building AuditCmd, a console-first auditing tool powered by SCANOSS.
AI-built, Go-coded, pure keyboard flow.
scanoss.medium.com/the-console-...
#Nerdearla kicks off tomorrow in Buenos Aires.
Jero & Roy from SCANOSS will be there – say hi if you spot them in the crowd!
👉 nerdear.la/en/
Jero & Roy from SCANOSS will be there – say hi if you spot them in the crowd!
👉 nerdear.la/en/
September 22, 2025 at 8:59 PM
#Nerdearla kicks off tomorrow in Buenos Aires.
Jero & Roy from SCANOSS will be there – say hi if you spot them in the crowd!
👉 nerdear.la/en/
Jero & Roy from SCANOSS will be there – say hi if you spot them in the crowd!
👉 nerdear.la/en/
London calling. Tomorrow we’re at the #Gartner Security & Risk Management Summit.
It’s a packed calendar this year, but events like these are worth it. Great conversations, new connections, and always a reality check on what matters most.
It’s a packed calendar this year, but events like these are worth it. Great conversations, new connections, and always a reality check on what matters most.
September 21, 2025 at 1:00 PM
London calling. Tomorrow we’re at the #Gartner Security & Risk Management Summit.
It’s a packed calendar this year, but events like these are worth it. Great conversations, new connections, and always a reality check on what matters most.
It’s a packed calendar this year, but events like these are worth it. Great conversations, new connections, and always a reality check on what matters most.
Nerdearla returns to Buenos Aires! 🎉
Jero & Roy from SCANOSS will be there to connect, learn & nerd out with the community.
See you at #Nerdearla 👉 nerdear.la/en/
Jero & Roy from SCANOSS will be there to connect, learn & nerd out with the community.
See you at #Nerdearla 👉 nerdear.la/en/
September 18, 2025 at 7:57 AM
Nerdearla returns to Buenos Aires! 🎉
Jero & Roy from SCANOSS will be there to connect, learn & nerd out with the community.
See you at #Nerdearla 👉 nerdear.la/en/
Jero & Roy from SCANOSS will be there to connect, learn & nerd out with the community.
See you at #Nerdearla 👉 nerdear.la/en/
SBOMs are only useful if they’re enforced.
With Dependency Track now built into SCANOSS GitHub Actions, risky code gets flagged before it’s committed.
Read more → www.scanoss.com/post/github-...
With Dependency Track now built into SCANOSS GitHub Actions, risky code gets flagged before it’s committed.
Read more → www.scanoss.com/post/github-...
SCANOSS GitHub Actions with Dependency Track Integration
Our GitHub Actions integration for SCANOSS has been extended to support Dependency Track policy checks. That means when you scan your project with SCANOSS in GitHub Actions, you can now automatically:...
www.scanoss.com
September 17, 2025 at 10:26 AM
SBOMs are only useful if they’re enforced.
With Dependency Track now built into SCANOSS GitHub Actions, risky code gets flagged before it’s committed.
Read more → www.scanoss.com/post/github-...
With Dependency Track now built into SCANOSS GitHub Actions, risky code gets flagged before it’s committed.
Read more → www.scanoss.com/post/github-...
Next week: Gartner Security & Risk Summit in London.
Let’s talk AI, resilience & real-world cyber risk.
📅 22–24 Sep
📍ExCeL London
We’ll be there. You?
www.gartner.com/en/conferenc...
Let’s talk AI, resilience & real-world cyber risk.
📅 22–24 Sep
📍ExCeL London
We’ll be there. You?
www.gartner.com/en/conferenc...
Gartner Security & Risk Management Summit 2025 in London, U.K.
Explore emerging trends, latest insight and solutions at 2025 Gartner Security & Risk Management Summit in London. Join now for the top cybersecurity conference.
www.gartner.com
September 15, 2025 at 1:50 PM
Next week: Gartner Security & Risk Summit in London.
Let’s talk AI, resilience & real-world cyber risk.
📅 22–24 Sep
📍ExCeL London
We’ll be there. You?
www.gartner.com/en/conferenc...
Let’s talk AI, resilience & real-world cyber risk.
📅 22–24 Sep
📍ExCeL London
We’ll be there. You?
www.gartner.com/en/conferenc...
SCANOSS Workbench v1.19.0 is live 🚀
✅ RAW results import (viewer mode)
✅ Import w/ source for side-by-side review
✅ CycloneDX + SPDX Lite exports
Details → www.scanoss.com/post/scanoss...
✅ RAW results import (viewer mode)
✅ Import w/ source for side-by-side review
✅ CycloneDX + SPDX Lite exports
Details → www.scanoss.com/post/scanoss...
SCANOSS Workbench v1.19.0 Released
We’ve just rolled out SCANOSS Workbench v1.19.0, packed with new import options, stronger SBOM exports, and fixes that make it even easier to work with real-world scan results.
www.scanoss.com
August 27, 2025 at 3:41 PM
SCANOSS Workbench v1.19.0 is live 🚀
✅ RAW results import (viewer mode)
✅ Import w/ source for side-by-side review
✅ CycloneDX + SPDX Lite exports
Details → www.scanoss.com/post/scanoss...
✅ RAW results import (viewer mode)
✅ Import w/ source for side-by-side review
✅ CycloneDX + SPDX Lite exports
Details → www.scanoss.com/post/scanoss...