Synopsys acquired Black Duck Software, a privately held firm specialising in automated solutions for securing and managing open source software.
Open source software (OSS) makes up 60% or more of the code used in today’s applications. It lowers development costs and speeds up the time to market. However, it also comes with security and licence-compliance challenges as most organisations lack visibility into the OSS in use. Black Duck’s products automate the process of identifying and inventorying the OSS code, detecting known security vulnerabilities and licence compliance issues. It also automatically raises alerts for any newly discovered vulnerabilities that affect the open source code.
The cash transaction is valued at approximately US$547m.