News

Registration is required for this free event / kostenlose Veranstaltung, aber Registrierung ist erforderlich

In-person only.  (Please actively select/de-select the topics you plan to attend or not, we will only consider your registration for the actively selected tracks on a first come first serve base. By submitting your registration you confirm to follow the event code of conduct.)

We will hold the second annual OpenChain and Friends event in Stuttgart from the 24th to the 26th of March 2026. (learn about last year’s edition here: https://openchainproject.org/news/2025/02/20/openchain-and-friends-stuttgart )

Main Event Location:

• Robert Bosch GmbH – Service and Supply Chain Campus (SCC) Feuerbach, Bregenzer Str. 26A, 70469 Stuttgart

Satellite Event Locations:

• Mercedes-Benz Tech Innovation in Vaihingen, Gropiusplatz 10, 70563 Stuttgart
• Bosch Digital in Ludwigsburg, Groenerstraße 5/1, 71636 Ludwigsburg

In Partnership With:

The FOSS-LÄND Community

Topic Streams:

1. Open Source Compliance and OSPOs  – Open Source Compliance & OSPO – processes, automation, governance & NFRs
2. Cybersecurity – Cybersecurity in the Software Supply Chain – CRA, SBOM requirements, ISO 18974, and good practices
3. Women in Open Source – networking and cross-track contributions
4. Embedded and Open Source Hardware – from chip design to licensing and IP questions
5. Artificial Intelligence – AI Systems Engineering & Data Platforms – methods, tools, open platforms, open AI agents for resilient supply chains
6. Digital Sovereignty and Open Source in Business – public/private collaboration, open source as a competitive factor
7. Education – open trainings, infrastructure, new formats
8. Automotive /SDV – Open Automotive Platform, Ecosystems, Tool Interoperability
9. Cross-Innovation and Innovation Practices

Contact FOSS@e-mobilbw.de or helpdesk@lists.openchainproject.org for more information. We would love for you to be part of this, and to help contribute to our welcoming community of open source governance professionals. We welcome everyone from small, medium and large companies, local and national government, non-profit organizations, academica and also independent parties curious about what is happening in this space.

The OpenChain Project had a Mini-Summit as COSCON 2025 in China on the 6th of December 2025. We were hosted by the local open source community in Beijing, and our OpenChain China Work Group Chair – Zhenhua Sun of ByteDance – lead discussion around licensing, security and regulatory compliance topics.

View the Keynote Slides:

The OpenChain Project was present at the Okinawa Open Laboratory – Open Source Panel on the 4th of December 2025. This panel provided a space to talk about open source, SBOM and VEX for improving national and economic security.

View the Panel Slides:

OpenChain is hosting a panel featuring experts from Bitsea, Jun Legal, FossID and SCANOSS discuss their experience and opinions on the topic of managing Generative AI in corporate environments. This discussion will feature both structured commentary and plenty of opportunity for the audience to engage and ask questions.

Join here 2025-12-04 @ 08:00 UTC / 09:00 CET / 16:00 CST / 17:00 KST + JST:

• https://zoom-lfx.platform.linuxfoundation.org/meeting/99505474824?password=77048af8-0226-4d4e-974a-2f7c95251b6f

The OpenChain Meridian 22 Work Group held its second meeting in early December with a focus on planning next steps for the region. Given the geographic scope, crossing over many cultures and languages, there was plenty to talk about. Open Source Summit Europe in Prague during 2026 was a key point of focus.

Watch the Recording:

Taipei, Taiwan — Sun Square has been officially recognized as both an OpenChain Service Provider and a Third-Party Certifier. This dual status enables the company to support global organizations in adopting ISO/IEC 5230 and ISO/IEC 18974, improving open source governance and software supply chain security.

This dual recognition enables Sun Square to support organizations adopting ISO/IEC 5230 (Open Source License Compliance) and ISO/IEC 18974 (Open Source Security Assurance), helping them build transparent and secure software-supply-chain governance.

The OpenChain Project, led by the Linux Foundation, establishes global standards for open source software supply chains. Its core specification, ISO/IEC 5230, defines best practices for license compliance, while ISO/IEC 18974 extends those principles to vulnerability management and security control.

As both a Service Provider and a Third-Party Certifier, Sun Square bridges advisory guidance with independent assessment. This combined capability allows enterprises to develop robust processes and obtain formal certification demonstrating their commitment to international standards.

“Becoming an OpenChain Partner reflects Sun Square’s long-term commitment to open collaboration and secure software supply chains,” said SZ Lin (林上智), Chief Cybersecurity Advisor at Sun Square. “By combining our OT cybersecurity and open source compliance expertise with OpenChain’s global framework, we aim to enable organizations to strengthen governance and resilience throughout the software lifecycle.”

Sun Square offers integrated services that include OT cybersecurity training and advisory based on the ISA/IEC 62443 standard, open source compliance and security governance for ISO/IEC 5230 and 18974 implementation, and software lifecycle security management covering SBOM development and vulnerability remediation.

By combining international standards with local implementation expertise, Sun Square continues to promote trusted and sustainable open source and cybersecurity practices in Taiwan and across the Asia-Pacific region.

About Sun Square

Sun Square Co., Ltd., headquartered in Taiwan and serving clients worldwide, provides cybersecurity and open source advisory services that help organizations align with international standards and regulations. The company specializes in OT security training, open source compliance, and software supply chain assurance, delivering consulting, training, and certification support aligned with ISO/IEC 5230, ISO/IEC 18974, and other global standards.

Learn more: https://sunsquare.tech