Can anyone explain what this black duck thing actually scans for? I cannot get any sense out of our risk mon who impose this on us. They talk about open source etc then scan load modules. I then wonder what they could possible be looking for. They never seem able to give examples. So does anyone have any direct knowledge of this. Sounds like someone has sold us some snake oil to me. Thanks
---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
