Black Duck KnowledgeBase

Comprehensive Database of Open Source Metadata

Download Black Duck Knowledgebase DatasheetThe Black Duck® KnowledgeBase™ is the industry’s most comprehensive database of open source project information. Since 2003, Black Duck has searched the Internet for information on open source and downloadable code, making the KnowledgeBase an integral and unique asset that differentiates our products and services.

Black Duck products leverage the KnowledgeBase for:

  • Deep License Data™ that identifies "embedded licenses" to help organizations trust the use of thousands of projects with no declared license. Deep License Data also exposes those projects with no license data, which are generally determined to carry a high risk profile.
  • Code search, scanning and analysis
  • Ongoing, automated license compatibility notification
  • Comparing software in any code base to the known universe of open source code, and reporting matches
  • Cataloging hard data that documents the code origin

The KnowledgeBase helps developers find code and components, and includes information on one million projects from more than 7,500 sites, and contains detailed data for over 2,300 unique software licenses (GPL, LGPL, Apache, etc.), including the full license text and dozens of encoded attributes and obligations for each license. It is continuously updated with thousands of new projects on a regular basis, and because it contains code and components from various sources, some of which have disappeared over the years, it is nearly impossible to replicate the data.

Black Duck Knowledgebase - Find Open Source Code

Black Duck employs a team of developers, affectionately referred to as “spiders,” dedicated to maintaining the KnowledgeBase, along with supporting the technology infrastructure and processes that have been developed over the course of many years.


  • Extensive licensing information
  • Security vulnerability data
  • Compares code fragments, source files, fully-formed components and binary files including executable files, static or dynamic libraries, images, icons, sound files, font files, logo files and archive files
  • Custom code printing allows you to add internally developed or third-party licensed code for future comparative analysis
  • Quickly find and identify encryption software within products to automatically determine the applicable export rules for the "crypto" elements

To learn more about how Black Duck can help your organization maximize the power of open source through mastery of oss logistics, contact us at

Product Integrations Learn About
Our Product Integrations

Latest Tweets

Black Duck Software (29 minutes ago)
RT @juanfcuesta: "Lower cost, flexibility, and ease of use -> The Enterprise Effect Of #OpenSource via @talkin_cloud
Black Duck Software (14 hours ago)
RT @daponovich: Speak Your Mind on the State of Open Source via @OSDelivers @acquia
Black Duck Software (15 hours ago)
#FREAKAttack: How to keep your code secure | @NetworkWorld by Black Duck's @LinuxPundit #infosec #cybersecurity
Black Duck Software (16 hours ago)
RT @SurveyMonkey: .@black_duck_sw is calling all #devs! Need your help predicting the future of #opensource--> http:…
Black Duck Software (16 hours ago)
Using Docker containers? Hear from #Docker & #Google on the #PowerofContainers on March 11th

Black Duck Software
8 New England Executive Park
Burlington, MA 01803

Contact Us

Legal Notices | Privacy Policy | Site map
Open Source Delivers | Open HUB
Open Source Think Tank