Let me get this straight, we love sharing. My self as a developer, always searches for code on google, copy/paste the code fragments, change the code, and use the code. We all do that as developers, it’s a time saver and you also learn a lot. Remember there’s more than 1 answer to a question, and there’s always a better way to solve a problem. And the most optimum ways to solve a question is there, you just have to google and find.
Open source has value, with people and organizations sharing their code base on GitHub, people are able not only share ideas, fix issue or even contribute. But when it comes to commercial software that is used by Fortune 100 companies, there’s an issue. And the issue is hackers, the world is such today, hackers do exist, and they want to get to your information and steal. These breaches are happening all the time around the world, most of the big ones make the news. These software breaches are costly to any organization, and can cripple an organization.
So, if you are running open-source software, where the source code is available to anyone, then you are making it very easy for someone to break into your software. You are leaving the key to chicken pen hanging on the door. You have just made it easy for the hackers to break into your software.
We still love the concept of open source, but the industries and the types of customers we sell to, open source doesn’t work for us.
When it came to FlowWright, early on we made the decision not to make open source or to make the source code available. FlowWright is not built on top of any other product, it is built from scratch using Microsoft .net technology. FlowWright is based on many complex algorithms and innovations that took many years of software expertise and talent to build. Given that FlowWright is used in most domains, automotive, government, financial, supply chain, biotechnology, medical and more, some are compliant industries and some or not. But most or some of our customers do hire third party organizations to perform security testing, penetration testing on our software.
As part of our QA process, FlowWright does go through a vigorous testing process, that include security testing using tools such as the Burp suite. On top of security testing, we also obfuscate our product libraries using Preemptive DotFuscator. At the end of the day, we want to protect our IP and also make sure our customers and their processes and data are safe.