Software Composition Analysis: The Secrets Behind Open Source Audits for M&A

Audits of thousands of codebases conducted by the Black Duck On-Demand audit services group reveal that almost every codebase contains open source code. Open source usage brings risk, primarily due to organizations failing to recognize what—and how much—open source is in their applications.

A code audit enables buyers to understand risks in the codebase that could affect the value of the IP. Sellers may want an audit to avoid surprises in due diligence, particularly given the amount of unknown open source found in the average codebase.

Learn the secrets behind open source audits for M&A and how to:

  • Understand risks that may affect software asset values.
  • Resolve potential issues before they affect the transaction.
  • Build appropriate protections into the deal terms.