We discussed the final steps necessary to turn this document into an online course. Balakrishna (our chair) has finalized details with the LF Training Team. They can release a version of the course for December 16th if we (a) close open comments on Chapters 1~5 and provide the final deliverable by end of November. Most of the work is done on Chapters 1~3, so our focus will be on filling out Chapters 4~5 in the short term, and then reverting to the early chapters for final review.
Join the Education Work Group at this mailing list:
CAICT, a scientific research institute directly under the Ministry of Industry and Information Technology (MIT) of China, is the latest OpenChain Project partner. They will be drawing on sixty four years of experience to offer third party certification support for OpenChain ISO/IEC 5230 in the Chinese market. Read their official statement in Chinese.
“Effective supply chain managed is more critical today than ever before,” says Shane Coughlan, OpenChain General Manager. “The size of the Chinese market offers both challenges and opportunities that can transform global trade. We are fortunate to work closely with companies like OPPO and Huawei on business optimization, and our new partnership with CAICT provides a new level of support for companies seeking effective, efficient management of open source software. As our first third party certified in Mainland China, we feel confident CAICT will act not only as a service provider but also as a lighthouse to offer support and structure to companies adopting and using OpenChain ISO/IEC 5230.”
About CAICT
Founded in 1957, the China Academy of Information and Communications Technology(hereinafter referred to as CAICT) is a scientific research institute directly under theMinistry of Industry and Information Technology (MIT) of China. It cherishes the culturalphilosophy of “Boosting prosperity with virtues and expertise” for years while adhering tothe development positioning of “a specialized think-tank for the government and aninnovation and development platform for the industry”. Committed to “the think-tank andenabler for innovation and development in an information society”, CAICT has providedstrong support for major strategies, plans, policies, standards, tests and certification forthe development of the national ICT sector and the IT application, thus proving itself animportant facilitator in the leapfrog development and innovation of China’s informationand communications sector. It has been granted hundreds of scientific and technologicalawards at both national and provincial levels.In recent years, with a view to adapting to the new eco-social backdrop andrequirements, CAICT has strengthened its efforts in innovation to achieve wider anddeeper research landscape. It has conducted in-depth research and foresighted planningin the fields of 4G/5G, industrial Internet, smart manufacturing, mobile Internet, Internet ofThings (loT), Internet of Vehicles (loV), cloud computing, big data, blockchain, artificialintelligence (Al), future networks, virtual reality/augmented reality (VR/AR), intelligenthardware, and cyber and information security. This enables CAICT to play an importantrole in strategy and policy study, technological innovation, industrial development, andinternational cooperation related to the ICT sector and the integration betweenindustrialization and informatization.
About OpenChain
The OpenChain Project maintains the International Standard for open source license compliance. This allows companies of all sizes and in all sectors to adopt the key requirements of a quality open source compliance program. This is an open standard and all parties are welcome to engage with our community, to share their knowledge, and to contribute to the future of our standard.
About The Linux Foundation
The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and industry adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.
The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage.
Linux is a registered trademark of Linus Torvalds.
OpenChain Japan community members were a key part of creating the Tokyo Metropolitan Government Open Source Software Disclosure Guidelines. Huge thanks to:
遠藤 雅人
The Linux Foundation OpenChain Project Automotive Chair / Japan Work Group Promotion Sub Group Leader
SCANOSS is the latest company to announce participation in the OpenChain Project partner program.
“The standards promoted by the OpenChain Project have helped us to converge on a more interoperable SBOM that will further reduce friction in the software supply chain,” says Alan Facey, Chief Disruptor, SCANOSS. “SCANOSS exists to enable companies of all sizes to run a quality open source compliance program without having to rely on commercial vendor tools. Our partnership with OpenChain reinforces our commitment to the open source community and the ‘freedoms’ it embodies.”
“Automation is a key aspect of effective open source compliance,” says Shane Coughlan, OpenChain General Manager. “SCANOSS joins our partner program as another global vendor supporting software bill of materials in a manner that promises increased transparency and interoperability in the supply chain. Of particular note is their commitment to providing the scanning technology itself as open source, providing an additional layer of assurance regarding sustainability in a complex, fast moving market.”
About SCANOSS
SCANOSS is an open, configurable OSS Inventory engine that was built specifically for developers, empowering them to confidently produce compliant code from the moment they begin writing, while delivering greater license and usage visibility for the broader DevOps team and supply chain partners. With its open architecture that is easy to integrate into existing processes and toolchains, SCANOSS transforms software bill of materials (SBOM) creation from ‘write now, audit later’ to an always-on analysis of live code. By freeing developers to focus on writing great, compliant code that they and their team can completely trust, applications are finished earlier, quality is consistently higher, and development costs are dramatically lower.
About OpenChain
The OpenChain Project maintains the International Standard for open source license compliance. This allows companies of all sizes and in all sectors to adopt the key requirements of a quality open source compliance program. This is an open standard and all parties are welcome to engage with our community, to share their knowledge, and to contribute to the future of our standard.
About The Linux Foundation
The Linux Foundation is the organization of choice for the world’s top developers and companies to build ecosystems that accelerate open technology development and industry adoption. Together with the worldwide open source community, it is solving the hardest technology problems by creating the largest shared technology investment in history. Founded in 2000, The Linux Foundation today provides tools, training and events to scale any open source project, which together deliver an economic impact not achievable by any one company. More information can be found at www.linuxfoundation.org.
The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage.
Linux is a registered trademark of Linus Torvalds.
The OpenChain Japan Work Group is one of the most active and oldest parts of the OpenChain Project. Featuring hundreds of people and around one hundred companies, it is a key source of reference material, standard development and general knowledge-sharing. The meetings are held in Japanese but all are welcome to attend. No registration is necessary.
16:00 -16:02 Opening 16:02 -16:10 Keynote by Shane Coughlan 16:10 -16:20 about OpenChain Japan WG by S.Kato from Panasonic 16:20 -17:00 Case study “Growing Open Source Culture Inside Sony” by K.Sato from Sony 17:00 Closing
This webinar unpacked some of the topics related to agile development in the supply chain. A popular concept, it nevertheless relies on structure to ensure “agile” does not mean “messy.”
The OpenChain Japan Planning Sub-Group is a small subset of the overarching Japanese community. These regular planning meetings provide a platform to arrange bi-monthly or quarterly events, and the ensure the pipeline of information to and from the global groups are in sync.
All parties welcome. The meeting will be held in Japanese between 14:00 and 15:00 JST.
The next OpenChain UK Work Group meeting takes place virtually via Zoom on Thursday 30 September from 14:00 – 15:30 BST.
A full agenda will be launched prior to the meeting, which will be an interactive session with plenty of opportunity to ask questions and discuss OpenChain adoption and best practice. There has been a huge amount going on in the world of OpenChain, with a raft of new, high-profile conformance announcements, new optional extensions to the standard covering security and community engagement, and increased emphasis on the ease of use of tooling.
OpenChain’s General Manager Shane Coughlan will be joining us, and bringing us up to speed on new initiatives intended to make existing compliance tools like FOSSology and ScanCode easier to use.
To reserve your free place on the virtual meeting, on 30 September 2021 from 14:00 – 15:30, please complete the online booking form:
To join the OpenChain UK Work Group visit https://lists.openchainproject.org/g/uk-wg and subscribe to the list to receive future details about the bi-monthly meetings and to sync and share information across all aspects of open source compliance.
