Resources

Video

Understanding GPL Linking Exceptions

Expert in open source audit analysis explains the difference between Static linking and Dynamic linking, how users can avoid conflict with LGPL licensed code, and a clear explanation on the basics of GPL linking exceptions.

Webinars & Events

TechTalk: InstallShield “Suite” Secrets

In this TechTalk you’ll learn about Suite, a project type within InstallShield, and how it resolves the problem of installing multiple packages, learn how Windows features in Suite works, and how secure it is to send packages via an installer.

Webinars & Events

Open Source Exchange: Security and License Compliance Challenges in the Year Ahead

Listen to our expert open source panel as they discuss topics such as; Log4j; 
legal developments resulting from GPL enforcement actions and SBOM mandates, the status of the cybersecurity executive order and long-lasting affects and more.

Blog

Log4j: Come out, come out wherever you are!

On December 10th, 2021, a critical vulnerability was found in Log4j.  It impacts almost every organization which develops applications in Java, or that uses third-party software.  Vulnerabilities get discovered every day.  However, due to the impact and widespread use of log4j, this vulnerability is driving a serious discussion on the…

Video

Log4j weary? How to move forward.

Experts talk about key learnings from the Log4Shell vulnerability, SBOM initiatives, ongoing diligence, and the importance of being proactive in understanding what’s in your code.

Webinars & Events

A Legal View on Open Source License Compliance From 2021

Revenera’s VP & Associate General Counsel, Marty Mellican and GTC Law Group’s, Principal, Leon Schwartz are joined to discuss, the Executive Order on improving the nation’s cybersecurity, GPL enforcement actions, emerging technology, open source and and many more will be explored in this one hour webinar.

Webinars & Events

Optimizing Software Product Ops in a Hybrid World

Join Revenera’s Principal, Product Marketing, Michael Goff and Director, Product Management Scott Niemann for a focused session on how to operationalize hybrid deployment models. Themes such as automated renewal management, customer self-service, revenue recognition, enforcement of customer use rights, and many more will be explored in this one hour webinar.

Blog

Open Source: Trouble because of sudden license changes

Open Source does not mean that the use of the code is allowed without any restriction: The use is subject to conditions which are formulated by the author (copyright holder) in the form of a license. Recently, Bitsea observed some Open Source projects maintained by commercial companies have changed their…

Video

Has the Dust Settled on Log4j?

Where are we now with Log4j? What’s been the fallout? In this podcast we'll talk about what we learned from it to apply to processes going forward to better prepare for the next Log4Shell-type vulnerability down the road.

Webinars & Events

Path to SaaS Monetization for Product Managers, Product Operations and Finance Leaders

In 3 on-demand webinars, Analysts and Revenera experts take a cross-functional approach to understanding the market drivers, organizational impacts, and business processes critical to the successful adoption of SaaS and subscription models. These sessions will provide the strategies you need to drive your SaaS Monetization efforts forward.

Blog

The Future of Software Piracy and License Compliance

As the SaaS model of delivering software to customers continues to grow, many software suppliers wonder about the impact on the future of software piracy and license compliance. It’s a topic we’re interested in, too: we share an annual update on software piracy statistics based on aggregated infringement data from…

Blog

The story behind colors.js and faker.js

The bizarre case of the author who corrupted his own npm packages – colors.js and faker.js. Originally reported by Bleeping Computer on Jan 9th the author of npm packages colors.js and faker.js, Marak Squires, has intentionally committed corrupt versions of each to his public GitHub repositories that trigger infinite loops…