Skip to main content
All Posts By

jmcginnis

The Linux Foundation SBOM Readiness Survey

By News

The Linux Foundation’s SBOM Readiness Survey has just been announced on their blog and social media channels. This is a major, important new initiative for the Linux Foundation.

Please take a few moments to read more about it and complete it if possible:

Linux Foundation Research Announces Software Bill of Materials (SBOM) Readiness Survey – Linux FoundationThis SBOM readiness survey is the Linux Foundation’s first project addressing how to secure the software supply chain.LINUXFOUNDATION.ORG

External Webinar: Accelerating Innovation With Open Source and Agile Compliance in the Financial Sector; June 17 at 11:00 CET

By News

Open source adoption is increasing rapidly within the financial services industry. Thanks to cutting edge technologies, affordability, flexibility, and the power of the open source community – more and more financial institutions are encouraged to integrate open source components into their investment and more data processing systems.

Meanwhile, the industry’s growing list of compliance initiatives and regulations dramatically changes the way financial companies rely on technology

to help improve governance and compliance structures.

In this webinar our experts will discuss the challenges the financial services industry faces when it comes to open source compliance, a look at regulation trusted standards and how companies that want to stay ahead of the game must leverage technology to automate important security and compliance processes.

Read the full article and register here.

OpenChain Partner Mini-Summit – 2020-06-14 @ 07:00 UTC

By Featured

The OpenChain PARTNER Mini-Summit will be held on the 14th of June at 07:00 UTC / 00:00 PST / 08:00 BST / 09:00 CEST / 12:30 IST / 15:00 CST / 16:00 KST / 16:00 JST.
The two-hour Mini-Summit will start with a discussion about the customer journey, followed by presentations from partners, and end with an open discussion about setting client expectations.

Andrew Katz of Orcro will facilitate the customer journey discussion.

Our partner presentations will be:

  • Gilles Gravier and Reza Alvavi from WIPRO
  • Nicole Pappler from AlektoMetis
  • Martin Callinan from Source Code Control

We will end with the roundtable on client expectations moderated by Shane Coughlan of the OpenChain Project.

Join without registration and for free via Zoom:
https://us02web.zoom.us/j/9990120120?pwd=NzVCaFE2L1RRRFZaSkk0dm8xdlplUT09

Software Bill of Materials: Protect Yourself, Protect Your Supply Chain (External Article)

By News

Device and IoT manufacturers must manage risk around the rapidly growing dependency on open source software, which directly impacts trust among software supply chain vendors and suppliers. How a software bill of materials (SBOM) plays a critical role, discusses Mark Gisi, director of the open source program office at Wind River Systems.

Imagine that you’ve injured yourself. You think you’ve broken a bone—maybe a toe. You go to a doctor to determine what’s happened and how to treat the injury. 

Who would you trust more? The doctor who just looks at the outside of your foot or the doctor who orders and reads an x-ray for clarity into what’s actually going on inside. 

Just as x-rays provide insight to what’s happening in your body, an open source software bill of materials (SBOM) provides details of what’s going on inside your software and how to handle it. 

Device and IoT manufacturers need to effectively manage risk around the rapidly growing dependency on open source software (OSS), which directly impacts trust among software supply chain vendors and suppliers. For this reason, the SBOM is a cornerstone of every robust software composition analysis (SCA) program. Here we’ll look at why that is, the critical role the SBOM plays in establishing trust around the use of open source, and why a quality SBOM is essential to the success of both internal and external stakeholders.

Read the full article here

OpenChain Reference Tooling Work Group Meetings, May 19th

By News

OpenChain Reference Tooling Work Group will be meeting on May 19th at two times for your convenience – 7 am UTC and 4 pm UTC.

Proposed Agenda:
1. News                                                                                                All
2. Containers an update                                                                Oliver/All
3. AOB                                                                                                  All

Looking forward to talk to you

Like for the last Meeting we will use the same infrastructure:
BigBlueButton provided by the FSFE
Link: https://conf.fsfe.org/b/compliance-tooling
Code: 199143