All product teams are required to review any Open Source Code used for each product version in the Active Development Cycle on a regular basis.
Reviews may be performed manually by checking open source websites, such as Openhub.net or Ossindex.net. Hexagon leverages an industry leading open source management solution that performs automated open source code scans to identify and track any components that could contain security vulnerabilities.