OpenChain Webinar: AboutCode and Beyond – End-to-End SCA
This OpenChain Webinar digs into open source tooling with open data for open source compliance. https://youtu.be/2vNKUK5ZNMw Full Overview From The Presenters Ensuring software license and security compliance can be difficult. Managing open source components - especially their licensing, provenance, and vulnerability risk - is a critical part of Software Composition…
Webinar: LF Management & Best Practices Portal
This webinar by Hilary Carter, SVP Research at The Linux Foundation, unpacked LF Management & Best Practices, the digital home where communities of “best practice” converge. Here, you’ll be able to find the standards, reference material, courses, live events and webinars, research, project communities, and the automation tools to help…
OpenChain Webinar: Eclipse Apoapsis
This webinar had Marcel Kurzmann from Robert Bosch GmbH present the Eclipse Apoapsis project in general with its process level idea of an abstraction layer concept and the ORT-server on a technical level. In the second part of the webinar, he gave an introduction of the abstraction layer concept with…
Webinar: Universal CVSS Calculator
This webinar discusses a Universal CVSS Calculator released by {metæffekt} GmbH. The open-source online tool is intended to support the assessment of vulnerabilities with their various CVSS scores from multiple authorities. It was created due to the lack of CVSS calculators which could ingest multiple vectors with different CVSS versions…
Webinar: SCANOSS Export Control
This time we had a special Webinar from Julian at SCANOSS to show us how they have collected and built solutions around managing open source and export control. https://youtu.be/Cya3OgVSXAI More About Our Webinars: This event is part of the overarching OpenChain Project Webinar Series. Our series highlights knowledge from throughout…
Webinar: FOSDEM 2024 Recap
For the second year in row, we welcome Philippe Ombredanne to recap the FOSDEM event for us. This is a great way to catch-up on one of the best events in the world discussing open source development, management and (most importantly for us) legal, licensing and automation. https://youtu.be/P6HseoTVFlg
Webinar: FOSS License Management – meta-osselot for OSSelot-Data in OpenEmbedded
Jasper Orschulko presented the concept of the meta-osselot project ( https://github.com/iris-GmbH/meta-osselot ) and how the curated data in OSSelot may be leveraged in OpenEmbedded environments. This webinar is part of a new series provided by the OpenChain Automation Workgroup to provide insights in good practices for community based IP audits.…
Webinar: Curating FOSS license information for the OSSelot database
https://youtu.be/naXlMflUK0M Caren Kresse from OSADL talks about sharing and reusing publicly available FOSS compliance material, as provided by the OSSelot project (https://www.osselot.org/), which requires trust in the reliability of the data. Such trust can be fostered by ensuring high quality and consistency of the data through a standardized curation process…
Webinar: VulnerableCode technical deep dive into VulnTotal
The OpenChain Project ran a series of webinars about using open source tools for open source compliance ran between September and December 2021. They have been re-published in the main webinar series to improve discoverability. This episode explores how a tool called VulnTotal can help with open source security management.…
Webinar: Digging Further Into SBOMs and the Supply Chain
The OpenChain Project ran a series of webinars about using open source tools for open source compliance ran between September and December 2021. They have been re-published in the main webinar series to improve discoverability. This episode explores how a Software Bill of Materials (SBOM) like SPDX ISO/IEC 5962 can…
