Shane Coughlan is an expert in communication, security and business development. His professional accomplishments include spearheading the licensing team that elevated Open Invention Network into the largest patent non-aggression community in history, establishing the leading professional network of Open Source legal experts and aligning stakeholders to launch both the first law journal and the first law book dedicated to Open Source. Shane has extensive knowledge of Open Source governance, internal process development, supply chain management and community building. His experience includes engagement with the enterprise, embedded, mobile and automotive industries.
The OpenChain Project was present at the LF APAC Leadership Summit in Hong Kong on the 2nd and 3rd of March 2023. This event contained a detailed series of presentations from key leaders in the Linux Foundation on day 1, and hosted a great OSPO Workshop lead by Ibrahim (LF AI & Data) on day 2.
Of course there was also plenty of time for networking, and LF APAC organized a wonderful cruise in Hong Kong harbor for attendees.
The OpenChain Newsletter provides a monthly summary of our work. It contains an overview of what we are doing to build trust around license compliance and security in the open source supply chain. This is a community newsletter, so we accept suggestions and ideas, and you can contact us by mail at any time.
The OpenChain Project now has 10 official third-party certifiers for our license compliance and security assurance standards.
You can now get third-party certified with ISO/IEC 5230 or the OpenChain Security Assurance Specification 1.1 anywhere in the world… and you have plenty of choice about who to work with. Of course, you have options when adopting our standards. The most common thing is actually for companies to start with self-certification, so if you are new to this… Learn more here)
OpenChain now has a Wikipedia page about ISO/IEC 5230. Huge thank you to Marc-Etienne Vargenau at Nokia for making this happen.
Our reference library of over 1,000 documents to help you learn about our standards, train people or suppliers around open source, get policy templates, self-certification checklists and more has been totally overhauled. It is now easier to find material, easier to share material and easy to translate material.
We have also dramatically improved our community calendar to make it much easier to find our events, webinars and more.
Yes Security and Panx Project announced adoption of our ISO/IEC standard for open source license compliance via the OpenChain website. Both companies self-certified. Yes Security is the first company from Brazil to announce conformance via our website. Well done!
It was an exciting month for us on the partner side of things. First of all, we had OSPOCO and Taylor English Join The OpenChain Partner Program, and we had TIMETOACT GROUP Offer Open Source Certification Based On ISO/IEC 5230. However, the banner headline (as mentioned in the cool statistic section of this newsletter) is that we now have 10 official third-party certifiers around the world.
Lots of recordings and minutes for those catching up this month.
Our global calls – where we edit the next generations of the license compliance and security assurance standards:
Other community meetings:
On the “external collaboration” side of things we had an OSS Compliance in 2022 / 2023 event co-organized with FOSSID. We were also featured with a speech and Q&A session at an OpenAnolis Standardization SIG Meeting in China at the invitation of Alibaba.
This month we had two webinars. One covered new security tools and one unpacked fascinating data points around GPLv2 licensing. Did you know there have been 40 versions of the GPLv2 published on its official websites and there have been 12 different versions found in the Linux Kernel? Definitely a webinar to watch if you are interested in the licensing side of things.
Last month we mentioned that Continental Corporation made LFC193 a required course for their software developers from late Q3 2022. Since then we had two other soft announcements from community members about their adoption.
For those wanting a sample of what’s on the community calendar for March…
Our new community education slides are now available. You will find a full overview of the project here and speaker notes to help you talk about what we do.
Legal: All trademarks belong to their respective owners. This newsletter is licensed under Creative Commons Attribution-NoDerivatives 4.0 International (CC BY-ND 4.0).
To learn more and to get help from any of our official third-party certifiers, simply visit our partner page and click on the relevant logos. That said, remember you have various options when adopting our standards. The most common route is for companies to start with self-certification, so if you are new to this… check out the checklists and questionnaires below.
The OpenChain Community Calendar has been revamped to make it much easier to find and attend our events. The new calendar view is in list format and is now present on both our landing page and our participation page.
The next OpenChain Germany Work Group meeting will be held online on Thursday 30 March 2023, from 09:00 to 11:00 CET. The meeting will be held under Chatham House conditions to ensure frank discussion. Big thanks to PwC for arranging and hosting us once again.
The preliminary agenda of the next online meeting is as follows:
Join us for the opportunity to share knowledge, take part in frank discussion and network with German players in the Open Source world. To register for this event, please click “Registration” in the menu above
Registration is open until 29 March 2023. We’ll send you an email with further information as soon as you’ve registered for the event, followed by your login details at a later date.
The next OpenChain UK Work Group meeting will be kindly hosted by the BBC at their Salford studios in Media City on the 28th of March. Thank you to David Buckhurst and Tom Sadler at the BBC for arranging this. For those staying overnight, there is a tentative plan to gather for a meal in the evening.
The Work Group meeting will start at around 1pm with lunch and the core event will start at 1:45 and run until 3:00. After that, we’re planning some additional activities, including a visit to the BBC’s famous “blue room” https://www.bbc.co.uk/blogs/internet/entries/03be315d-df39-3e1e-90a1-595c3d931613
To take part in this meeting place contact the organizers via the OpenChain UK Work Group mailing list:
The OpenChain Export Control Work Group will hold its third meeting on the 7th of March at 08:00 UTC. The focus will be on reviewing the new volunteer project being set up at https://github.com/crypto-law-survey to help explore the continuation of Bert’s work on http://www.cryptolaw.org/ as a general community resource.
https://zoom.us/j/93456802267Meeting ID: 93456802267
+13052241968,,93456802267# US
+16475580588,,93456802267# Canada
OpenChain Japan – OSPO Local Meetups in collaboration with TODO Group will take place between 15:00 and 16:00 on 2023-03-10 and 2023-03-24. Join via Zoom to learn more about activities in this area.
Zoom Meeting ID: 84799126957 / パスワード: 3L3NNss1
( https://zoom.us/j/84799126957?pwd=UzRJWkpxa1FlbkRNVHhVbFJVNnMwUT09 )
参加申込:不要
参加条件:独禁法、LF行動規範、および、チャタムハウスルールに従うこと
( No application for participation required, Participation required to follow an Antitrust Law, LF Code of Conduct, and Chatham House rules. )
議題 (Agenda):
OSPO ローカル ミートアップは、日本のオープン ソース プログラム オフィスの状況について話し合い、組織内でのオープン ソース戦略の採用を促進します。 TODO GroupとOpenChain Japan WPによるサポート。
OSPO Local Meetup to discuss the status of Open Source Program offices in Japan, and foster the adoption of an open source strategy within organizations. Supported by TODO Group and OpenChain Japan Working Group.
詳細は以下参照(See this URL for details)
https://community.linuxfoundation.org/ospo-local-meetup-japan-japanese-speaking/
© 2025 OpenChain. All rights reserved. The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our Trademark Usage page. Linux is a registered trademark of Linus Torvalds. Privacy Policy and Terms of Use
