Scantist Joins OpenChain Partner Program to Enable Consistent Open Source Governance and Compliance
Scantist, a leading provider of open source management platforms, has joined the OpenChain Partner Program.
Since spinning off from the security research lab in Nanyang Technological University in 2016, Scantist has applied its extensive research base and deep scientific expertise to automation around open source security, licensing and compliance risks across the software development lifecycle.
“Scantist represents another important stepping stone in ensuring OpenChain ISO/IEC 5230 has excellent support across critical geographies for the global supply chain,” says Shane Coughlan, OpenChain General Manager.
“We look forward to working closely with their team in promoting the ISO/IEC standard for open source license compliance, and also to collaborating around ensuring trust in the supply chain is also increased in other vital areas such as security."
“Scantist has a goal of helping every developer and company to use open source securely while staying legally compliant.” says Prof Liu Yang, who is the co-founder of Scantist. “Our partnership with the OpenChain Project underscores this commitment and also indicates our commitment to community collaboration in this space."
This innovative partnership with OpenChain accelerates Scantist plans to build a world-class solution for open source governance. It will deliver outstanding experiences for organizations and ensure they benefit from the best practices.
Driven by a trusted and consistent compliance vision, both parties will collaborate and deeply align on technologies, and market activities, such as webinars, events & training.
OpenChain is always working to expand and enhance the value of its training, certification, and continuing education for the community, as well as premium tools and resources. Together with OpenChain,Scantist’s strong dedication to supporting requirements and our ongoing passion for research and development could achieve effective management of open source for software supply chain and contribute to the future of governance, risk and compliance.
About OpenChain
The OpenChain Project maintains the International Standard for open source license compliance. This allows companies of all sizes and in all sectors to adopt the key requirements of a quality open source compliance program.
Related Blogs
Find out how we’ve helped organisations like you
The RoguePuppet Lesson: Why Software Supply Chain Security Is Non-Negotiable
A critical software supply chain vulnerability was recently averted when security researcher Adnan Khan uncovered a severe flaw in the GitHub repository Puppet Forge in early July 2024. Dubbed RoguePuppet, this vulnerability would have allowed any GitHub user to push official modules to the repository of Puppet, a widely-used open-source configuration management tool.
Driving Security: The Critical Role of Binary Analysis in Automotive Cybersecurity
In the rapidly evolving automotive industry, cybersecurity has become a paramount concern. With the increasing connectivity and complexity of modern vehicles, manufacturers face unprecedented challenges in ensuring the safety and security of their products. The introduction of regulations like UN R155 and R156 has further emphasized the need for robust cybersecurity measures throughout the vehicle lifecycle.
