industry news
Subscribe Now

Synopsys and ReversingLabs Sign Agreement to Enhance Software Supply Chain Risk Management

Agreement Provides Comprehensive Software Supply Chain Risk Management Solution for Both Open-Source and Commercial Third-Party Software

MOUNTAIN VIEW, Calif., May 11, 2023 /PRNewswire/ — Synopsys, Inc. (Nasdaq: SNPS) today announced an agreement between its Software Integrity Group and ReversingLabs that provides software development and security teams with a comprehensive software supply chain risk management solution. Synopsys Software Integrity Group’s market-leading open-source scanning capabilities of Black Duck® and ReversingLabs’ Software Supply Chain Security (SSCS) Platform address complete software bill of materials (SBOM) requirements and software supply chain threats as part of their software development and continuous integration and continuous delivery (CI/CD) processes.

Black Duck software composition analysis manages the security, quality and license compliance risks that come from the use of open-source code in applications and containers. The ReversingLabs SSCS Platform complements the capabilities of Black Duck by scanning commercial third-party components for vulnerabilities, malware and instances of software tampering. These capabilities provide additional security risk insight to quickly identify malware, software tampering and anomalies inserted in software to prevent supply chain attacks before release. Synopsys is now authorized to resell the ReversingLabs SSCS Platform with Black Duck to create comprehensive, actionable SBOMs automatically and throughout the software supply chain.

“Software and security leaders are looking to Synopsys to lead in delivering complete solutions to secure the rapidly evolving software supply chain threat landscape,” said Jason Schmitt, general manager of the Synopsys Software Integrity Group. “ReversingLabs provides the perfect complement to our expertise in open-source risk and application security by layering in some of the most advanced security technology available for identifying and eliminating security risk from commercial and third-party software components. Together, we can produce accurate and complete SBOMs that include all sources of software in the supply chain.”

According to Gartner1, 45% of organizations worldwide will experience attacks on their software supply chains by 2025. As a result, organizations are going to put added pressure on software suppliers and their internal software development efforts to demonstrate security best practices.

“Recent software supply chain attacks on open-source and commercial third-party software require a new approach to software resilience,” said ReversingLabs CEO, Mario Vuksan. “This means organizations must strive for a more holistic view of the software supply chain, a deeper understanding of complex software package composition, including open-source and commercial third-party components, and a more comprehensive view of software behavior. With Synopsys, our combined efforts will not only ensure regulatory needs are met but truly enable developers and security managers to avoid software threats and prioritize and action software risks and quality issues.”

For more information, read our detailed blog post.

About the Synopsys Software Integrity Group
Synopsys Software Integrity Group provides integrated solutions that transform the way development teams build and deliver software, accelerating innovation while addressing business risk. Our industry-leading portfolio of software security products and services is the most comprehensive in the world and interoperates with third-party and open-source tools, allowing organizations to leverage existing investments to build the security program that’s best for them. Only Synopsys offers everything you need to build trust in your software. Learn more at

About Synopsys
Synopsys, Inc. (Nasdaq: SNPS) is the Silicon to Software™ partner for innovative companies developing the electronic products and software applications we rely on every day. As an S&P 500 company, Synopsys has a long history of being a global leader in electronic design automation (EDA) and semiconductor IP and offers the industry’s broadest portfolio of application security testing tools and services. Whether you’re a system-on-chip (SoC) designer creating advanced semiconductors, or a software developer writing more secure, high-quality code, Synopsys has the solutions needed to deliver innovative products. Learn more at

Leave a Reply

featured blogs
Jun 8, 2023
Learn how our EDA tools accelerate 5G SoC design for customer Viettel, who designs chips for 5G base stations and drives 5G rollout across Vietnam. The post Customer Spotlight: Viettel Accelerates Design of Its First 5G SoC with Synopsys ASIP Designer appeared first on New H...
Jun 8, 2023
Radial compressors, also known as radial fans or blowers, are primarily used for compression purposes. Radial blades attached to a rotating impeller draw air into the unit's center. They are well-suited for high-pressure applications, where their efficient design can sav...
Jun 2, 2023
I just heard something that really gave me pause for thought -- the fact that everyone experiences two forms of death (given a choice, I'd rather not experience even one)....

featured video

The Role of Artificial Intelligence and Machine Learning in Electronic Design

Sponsored by Cadence Design Systems

In this video, we talk to Paul Cunningham, Senior VP and GM at Cadence, about the transformative role of artificial intelligence and machine learning (AI/ML) in electronic designs. We discuss the transformative period we are experiencing with AI and ML and how Cadence is revolutionizing how we design and verify chips through “computationalizing intuition” and building intuitive systems that learn and adapt to the world around them. With human lives at stake, reliability, and safety are paramount.

Learn More

featured paper

EC Solver Tech Brief

Sponsored by Cadence Design Systems

The Cadence® Celsius™ EC Solver supports electronics system designers in managing the most challenging thermal/electronic cooling problems quickly and accurately. By utilizing a powerful computational engine and meshing technology, designers can model and analyze the fluid flow and heat transfer of even the most complex electronic system and ensure the electronic cooling system is reliable.

Click to read more

featured chalk talk

Flexible Development with the PSoC 62S2 Evaluation Kit
Sponsored by Mouser Electronics and Infineon
In order to get a successful IoT design launched today, we need a robust toolbox of cloud connectivity solutions, sensor interfaces, radio modules, and more. In this episode of Chalk Talk, Amelia Dalton and Paul Wiegele from Infineon investigate the PSoC™ 62S2 Evaluation Kit from Infineon. They take a closer look at the key features included in this kit and how it can help jumpstart your next IoT design.
Nov 11, 2022