The automotive industry has one of the most complex and interwoven supply chains. OpenChain Partner, Russ Eling from OSS Consultants speaks about the intricacies of open source management, as well as some of the challenges faced by the automotive industry. This presentation will also highlight some of the takeaways and keys to managing risk. Before starting OSS Consultants, Russ pioneered GM’s global open source initiative during his tenure as the Open Source Compliance Officer. He is perfectly positioned to help provide insight in this matter.
OpenChain Webinar #53 – OpenSCA – 2023-06-29 at 08:00 UTC / 10:00 CEST / 16:00 CST / 17:00 KST + JST
Our 53rd Webinar will highlight a new open source tool for open source compliance and security that originates in China. This tool has been created by a company called XMIRROR. The open source CLI offers SPDX support, so may be of immediate interest to tooling communities around the world, particularly from the perspective of integration with open source tooling frontend solutions.
As always, everyone is invited to attend. No registration necessary. Join via this link:
From The XMIRROR Team:
OpenSCA is an Open Source project that could steadily and flexibly offer SCA (Software Composition Analysis) ability and aware users of all open source component assets and risks introduced. The community aims at constructing a low-cost, compatible and extensible solution to open source security in joint efforts.
GitHub
https://github.com/XmirrorSecurity/OpenSCA-cli
Website
Deloitte, a global leader in providing audit and assurance, tax and legal, consulting, financial advisory, and risk advisory services to companies, is the latest official OpenChain Partner.
“Open source license and security compliance has become an essential part of our clients’ supply chains. The OpenChain project has done an excellent job in providing best practices and governance guidelines that are reflected in ISO/IEC 5230 and ISO/IEC 18974,” says Sascha Pudenz, Senior Manager at Deloitte. “We are very pleased to become a contributing member of the OpenChain community and a third-party certifier. The opportunity to support the project and spread the principles throughout our internal and external network will also help drive maturity and awareness of the importance of these standards.” adds Robert Härtwig, Director at Deloitte.
“We are delighted to welcome Deloitte to our support ecosystem,” says Shane Coughlan, OpenChain General Manager. “The provision of services like third-party certification is a vital pillar of our standardization work, and helps to ensure open source process management is effective, coherent and builds trust in the supply chain. We look forward to working closely with their team in the months and years ahead to ensure the complexity of managing technology is reduced for companies of all sizes and in all markets.”
About Deloitte
Deloitte provides industry-leading audit and assurance, tax and legal, consulting, financial advisory, and risk advisory services to nearly 90% of the Fortune Global 500® and thousands of private companies. Our professionals deliver measurable and lasting results that help reinforce public trust in capital markets, enable clients to transform and thrive, and lead the way toward a stronger economy, a more equitable society and a sustainable world. Building on its 175-plus year history, Deloitte spans more than 150 countries and territories. Learn how Deloitte’s approximately 415,000 people worldwide make an impact that matters at www.deloitte.com.
Today the OpenChain Project announces new online conformance checklists for all of our current license compliance and security assurance standards. These checklists allow any organization to quickly and privately check if they meet the requirements of a standard. They are a free service provided to the global supply chain to support trust between organizations.
Each checklist has a series of “yes” or “no” statements. If you can answer “yes” to everything, you are self-certified. If you answer “no” to some items, you know where to invest further time to build a quality program. The checklists allow you to save your progress and take up to 30 days to complete all the items.
After completing a checklist, you decide if we list you on our website or not. Of course, we hope to display more and more examples of adoption over time.
For License Compliance
For Security Assurance
For Other Variants Of These Standards
Today the OpenChain Project releases a new way for organizations to show their use of our license compliance and security assurance standards. If you use ISO/IEC 5230, ISO/IEC DIS 18974, OpenChain License Compliance 2.1 or OpenChain Security Assurance 1.1 you can fill out a simple form and get an official conformance badge.
This form is safe, secure and private. You decide if we list you on our website or not. Of course, we hope to display more and more examples of adoption over time.
Shane Coughlan’s Keynote
Haksung, The Chair, Opens The Meeting
Seo-yeon – A Major Contributor – Gave A Great Talk As Usual
The Audience Was Dynamic And Attentive To All The Excellent Presentations
Also, Snacks
A Message From Seo-yeon Lee at LINE Plus.
안녕하세요 여러분! 라인의 이서연입니다.
어제는 잘 들어가셨나요~?
조금 더웠던 날씨에도 불구하고 모두들 에너지 넘치게 모임에 참석해주셔서 덕분에 이번에도 알찬 시간을 보낼 수 있었습니다.
발표 준비에 수고해주신 발표자 여러분, 그리고 장소 준비에 힘써주신 카카오 크루 여러분께 다시 한 번 감사의 말씀 전합니다.
어제 말씀드렸던 행사 피드백 설문조사를 보내드립니다. 아주 짧은 내용이오니 꼭 의견 보내주시면 다음 모임에 반영하도록 하겠습니다.
추가로 그룹토의 활동 결과물도 보내드립니다.
This webinar covers a proposal from the Okinawa Open Labs in Japan to help “label” items in the supply chain to increase trust. Our topic was the Trusted Network Introduction – Eco-system based Open Trust Chaining over existing value-chain and supply-chain, and the presenter was MASANORI TSUJIKAWA (辻川公章) from Alaxala.
Check Out The Rest Of Our Webinars
This is OpenChain Webinar #52, released on 2023-06-16.
Our export control work group continues to explore pre-existing material and how it can be made easier to find, navigate and repurpose. The focus is on reviewing the new volunteer project being set up at https://github.com/crypto-law-survey to explore the continuation of Bert’s http://www.cryptolaw.org/ as a general community resource. Check out the recording to learn more.
The 52nd OpenChain Webinar will cover a proposal from the Okinawa Open Labs in Japan to help “label” items in the supply chain to increase trust.
Our presenter will be MASANORI TSUJIKAWA (辻川公章) from Alaxala.
Our topic will be the Trusted Network Introduction – Eco-system based Open Trust Chaining over existing value-chain and supply-chain.
Everyone can join from this link:
https://zoom.us/j/4377592799
