Tag
mergers-and-acquisitions
Safeguard articles tagged "mergers-and-acquisitions" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Compliance
What open source scans miss in M&A due diligence
Open source composition scans like Black Duck catch known packages and licenses — but M&A due diligence needs to catch what those scans miss too.
Jun 15, 20268 min read
Compliance
Open source license risk in M&A due diligence
Open source license conflicts hide in most acquisition targets' codebases. Here's why manifest-based SCA tools like Mend.io miss them in M&A diligence — and what a real audit needs.
May 22, 20268 min read
Buyer's Guides
Best open source audit tools for M&A due diligence
A practical buyer's guide to open source audit tools for M&A due diligence, comparing ScanCode, FOSSology, ORT, Syft/Grype, FOSSA, and Black Duck.
Nov 5, 20258 min read