Check out this article on ZDNet to learn more about how OpenChain ISO 5230 and other LF projects fit into the recent US Executive Order on Cybersecurity.

“Open source software license compliance must not be overlooked. Following the trends in the use of ISO/IEC 5230:2020, it is fair to predict more companies and industries will demand conformance as well as integrate the standard into their supply chain work practices. Cybersecurity breaches are a serious threat to all types of businesses. In the last twelve months four in ten businesses report having cybersecurity breaches or attacks in the UK. Although ISO/IEC 5230:2020 does not contain an express provision regarding cybersecurity, conformance to the standard makes the tracking of security vulnerabilities much easier. Adherence to the ISO standard now, puts your organisation ahead of the curve and places you ahead of non-conformant competitors.”
Read The Full Article

Synopsys has been announced as a global third-party certifier for OpenChain ISO 5230, the International Standard for open source license compliance. They join PwC and TUV SUD in providing such services.
“Establishing trust in open source is a continual journey with growing obligations,” says Jacob Wilson, Senior Security Consultant with the Synopsys Software Integrity Group. “Becoming an OpenChain 3rd party certifier allows Synopsys to promote the ISO/IEC 5230:2020 Standard and OpenChain community.”
“Welcoming Synopsys as a third-party certifier is an important milestone in two respects for the OpenChain Project,” says Shane Coughlan, OpenChain General Manager. “Firstly, they have exceptional reach to provide certification services to a worldwide customer base, and this will be beneficial for the both the OpenChain community and the broader open source market. Secondly, as the third entity providing such services, the OpenChain community now has significant freedom of choice when seeking vendor support.”

“Open source adoption is increasing rapidly within the financial services industry. Thanks to cutting edge technologies, affordability, flexibility, and the power of the open source community – more and more financial institutions are encouraged to integrate open source components into their investment and more data processing systems. Meanwhile, the industry’s growing list of compliance initiatives and regulations dramatically changes the way financial companies rely on technology to help improve governance and compliance structures. In this webinar our experts will discuss the challenges the financial services industry faces when it comes to open source compliance, a look at regulation trusted standards and how companies that want to stay ahead of the game must leverage technology to automate important security and compliance processes.”
Register for Free
This webinar explored the variants of the GPLv2 that exist and have existed throughout the years, highlighting the existence of small changes in details that may be relevant to some parties.
Check Out The Rest Of Our Webinars
This is OpenChain Webinar #24, released on 2021-06-03.

Newsletter – Issue 49 – May 2021
Our newsletter contains some of the highlights from the last month of activity in the project. Plenty more happened. Check out the full stream here:
https://www.openchainproject.org/news
OpenChain @ Q1 Survey Results
Find the fascinating results of our Q1 community survey here:
OpenChain Q1 Survey – Results and Notes
OpenChain @ Interview with Masato Endo, OpenChain Project Japan
OpenChain @ Slack
OpenChain is on Slack:https://www.openchainproject.org/featured/2021/04/06/openchain-is-on-slack/embed#?secret=LkSo1RDlEa
OpenChain @ Gear
OpenChain ISO/IEC 5230 Gear is available due to popular demand:
OpenChain @ Webinar #23
You can watch OpenChain Webinar #23 on OpenChain ISO 5230 in Venture Capital:
Check Out All Our Previous Newsletters

We will hold our regular OpenChain Bi-Weekly Webinar at 14:00 UTC today. Our speaker will be Martin Callinan from Source Code Control Limited on OpenChain ISO 5230 in the field of Venture Capital. This is an emerging space for us, but one that appears to offer similar promise to existing use of OpenChain in Mergers and Acquisitions.
Join Us:

The OpenChain Japan Work Group will hold its 19th meeting on the 26th of May. All welcome! The majority of the meeting will be held in Japanese.
Agenda
14:00 – 14:02 Opening
14:02 – 14:10 Keynote by Shane Coughlan
14:10 – 14:20 About OpenChain Japan WG by K.Owada
14:20 – 14:50 Case Study: “NEC group’s OSS training and feedbacks from trainees” by T.Yoneshima
14:50 – 15:20 Case Study: “Company A’s journey to ISO/IEC 5230 OpenChain Conformance”
15:20 – 15:25 Closing
Join The Meeting
- https://socionext.zoom.us/j/99975267803?pwd=ekhxaHA3bVZUSVU5M0dVMkF2Z0pkQT09
- Meeting ID: 99975267803 / password: ]>guXS~6

The OpenChain Japan Work Group will hold its 2nd meeting for people new to OpenChain on the 21st of May. The meeting will be held in Japanese. This will be an informal social meeting so please feel free to enjoy drinks and snacks!
Join The Meeting
- https://socionext.zoom.us/j/99975267803?pwd=ekhxaHA3bVZUSVU5M0dVMkF2Z0pkQT09
- Meeting ID: 99975267803 / password: ]>guXS~6