open source vulnerabilities reported every year.
of all cyber attacks target application vulnerabilities.
of applications contain open source vulnerabilities.
Having a tool that lets us look at our code and look at what issues could be introduced enables us to be a lot more informed and have a higher degree of confidence that when we release software we’re not introducing additional risks.
The Black Duck® KnowledgeBase™ is the industry’s most comprehensive database of open source project information. The Black Duck KB includes over ten years' worth of data, more than 2.5 million software projects from more than 10,000 sources, and detailed data for more than 2,500 unique licenses. With comprehensive coverage of vulnerabilities, community activity, and full license texts and obligation attributes, no other open source vulnerability database comes close.