Black Duck’s open source KnowledgeBase™ is the industry’s most comprehensive database of open source project, license, and security information, sourced and curated by the Cybersecurity Research Center (CyRC), covering more than 8.7 million open source components from over 57,700 forges and repositories.

Get unparalleled insight into open source components

Black Duck software composition analysis technology

With millions of open source projects available globally from thousands of websites and forges, it can be difficult (and sometimes impossible) to effectively track your open source use and manage the application security, software license compliance, and component quality risks that come with it. Black Duck SCA solves this problem, giving development, security, and legal teams maximum visibility and control of open source in their applications and containers. The open source KnowledgeBase is the foundation for Black Duck SCA, providing the industry’s most comprehensive database of open source component, vulnerability, and license information.

Related content

Video

See how Black Duck SCA works