Watch our latest edition of AppSec Decoded as Tim Mackey, principal security strategist at Synopsys Cybersecurity Research Center, and Taylor Armerding, security advocate at Synopsys Software Integrity Group, discuss the value of Black Duck® by Synopsys audit services in the M&A world, and ways to reap the benefits of your open source software without falling victim to the risks.

Learn more about Synopsys Software Integrity: https://www.synopsys.com/software-integrity.html
Subscribe: https://www.youtube.com/synopsys
Follow Synopsys on Twitter: https://twitter.com/sw_integrity
Like Synopsys on Facebook: https://www.facebook.com/synopsyssoftwareintegrity
Follow Synopsys Software Integrity on LinkedIn: https://www.LinkedIn.com/showcase/sw_integrity

▬ Contents of this video ▬▬▬▬▬▬▬▬▬▬

0:00 - Intro

0:47 – How an audit addresses concerns related to acquiring software

2:42 – How to create robust security for open source

7:14 – How to address open source code with few maintainers

8:46 – Trust and verify approach to securing software

11:03 – How far an SBOM can go to address security and licensing risks