VersionEye

29/04/2021

Here is a blog post about the motivation to relaunch VersionEye 2.0

https://blog.versioneye.com/2021/04/18/versioneye-2-0/

More than 3 years ago I discontinued VersionEye. A SaaS tool for Open Source License Compliance & Security. VersionEye 1.0 could monitor your package manager files on GitHub, notify you about o…

29/04/2021

This is how your memory consumption looks like if you integrate Redis into your application. Our memory usage dropped by ~70% and traffic on the main database dropped by ~80%.

27/04/2021

46% of all SMBs victim of cybersecurity. Often that's just convenience. There are many tools & services on the market which can help you to avoid being a victim.

https://www.heise.de/news/Kleine-und-mittlere-Unternehmen-IT-Sicherheit-ungenuegend-6027060.html

Für kleine und mittlere Unternehmen ist IT-Sicherheit wichtig – Kundendaten sind kostbar. Nicht alle Firmen sind ausreichend informiert. Ein Tool soll helfen.

20/04/2021

VersionEye 2.0 is adding support for Python!
Now you can simply upload your requirements.txt file to VersionEye to see which of your dependencies are affected by security vulnerabilities and strong copyleft licenses.
Read about the full integration here:

https://blog.versioneye.com/2021/04/20/adding-python-support/

VersionEye 2.0 started with only 3 languages. Ruby, NodeJS and PHP. Now Python was added as well! VersionEye supports the package manger PIP. You can simply upload your requirements.txt file to get…

19/04/2021

"Einzelhandel und E-Commerce nutzen Open Source in 92 Prozent aller Codebasen. Davon sind 71 Prozent von Schwachstellen betroffen."

Die meisten Schwachstellen lassen sich durch ein einfaches update auf die neuste Version beheben! VersionEye kann hier schnell und kosteneffizient weiter helfen! Security und License-Compliance muss nicht immer teuer und kompliziert sein!

https://www.heise.de/news/Veraltete-Open-Source-Komponenten-sind-Sicherheitsrisiko-6015297.html

Unzureichend verwaltete Open-Source-Komponenten stellen in kommerziellen Anwendungen ein großes Risiko dar – das die meisten Anbieter betrifft.

27/03/2021

If you are using Ruby on Rails ( ) you should upgrade to the newest versions, otherwise, you might have some license compliance issues. All older versions are affected by the GPL-2.0 license! This is related to the fiasco!

Rails 5.2.5, 6.0.3.6 and 6.1.3.1 have been released! These versions directly packages MIME type data adapted from Apache Tika, released under the permissive and compatible Apache License 2.0.

https://weblog.rubyonrails.org/2021/3/26/marcel-upgrade-releases/

26/03/2021

Code library yanked over license blunder, sparks chaos for half a million projects!

That's why OS License Compliance is important!

https://www.theregister.com/2021/03/25/ruby_rails_code/

Devs scramble for replacement mimetype data package