SOOS — Developer security, license, compliance and testing platform

SOOS began as a side project, born out of our experience with organizational compliance. There was a moment during a due diligence process where it became apparent that security and licensing in open source software were things we needed to worry about. While attempting to manually identify all the licenses and potential compliance issues within the various branches of code, We felt there had to be an easier way. So we did some research… What we found was frustration. Of the available tools, there was a great deal of confusion around features, pricing, and user seats. Nothing was straightforward, and after spending a ton of time reading through websites, and talking to sales representatives, We still didn’t feel any closer to the solution we were looking for. This motivated us to begin building one ourselves. It was always important to us that SOOS be accessible to everyone – that’s why we don’t have limits on pricing, or users, or number of scans. Our lead architect, Josh, wanted SOOS to be something he would want to use, and something developers everywhere would be excited about. So we built in all the integration points to make it seamless to integrate with the source repository, CI/CD pipeline and issue tracking. As security breaches become more commonplace, it is critical that companies are aware of each and every dependency within their code. We're proud to say SOOS is available to help the development community stay secure. We currently offer a full Software Composition Analysis Toolset, Compliance & Governance Framework and Document creation (e.g. SBOM). Our flat fee structure covers the entire team for much less than our competitors. In 2022 we are adding DAST to the platform. We'd love to know what would help your team.

Does what we need - made integrating open source vuln checks and license checks way easier for our startup.

I am guilty of delaying putting open-source scanning into our CI/CD pipeline due to costs. SOOS is the first scanner I have seen that a startup can afford. You now have no excuse not to deal with your code vulnerabilities. Put this into your pipeline today! It works, and the company is a delight to partner with.

We have all made that dreaded typo in an email... but what if you made it in your code - that is just the thing hackers rely on to exploit your open source software usage. Our product is made to be simple, straightforward and effective to keep your software secure.

SOOS is a great addition to our team's workflow. It's an easy-to-use product and wildly affordable relative to the competition (who over-charge.) The unlimited users and unlimited builds makes it a no-brainer when the time comes to make the budget request. Keep up the amazing work!

The SOOS team and their platform have been great to work with!