Skip to main content
Category

licensing

Webinar: ISO/IEC 5230 Contribution and Extensions

By community, Featured, licensing, News, standards, Webinar

This webinar explained how to help with the development of OpenChain ISO/IEC 5230, including contributing new ideas, or potentially expanding aspects of its use. As an open project, ensuring everyone can engage easily is a key part of our culture.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #16, released on 2021-01-20.

Webinar: Michael Poe on His Journey to Open Source

By community, Featured, licensing, News, standards, Webinar

We heard from Michael G. Poe, a newcomer to the world of Open Source Compliance and current Sales Manager with FossID.  He shared his thoughts on his surprising journey from consumer products to software, and how the underlying principles of the open source community have enabled him along the way.  

Michael also touched on what he believes can be some of the challenges to the frictionless adoption of OpenChain conformance. And lastly, based on his experiences and learning agenda thus far, what are some areas that can be improved when it comes to Open Source, Compliance, and the tech industry in general.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #15, released on 2020-12-11.

Webinar: Issues with Open Source License Compliance in Consumer Electronics

By community, Featured, licensing, News, Webinar

On this webinar Tim Bird of Sony spoke on ‘Issues with Open Source License Compliance in Consumer Electronics’, a variant of a speech recently delivered at Open Source Summit Europe, and made available here for our global audience along with a great Q&A.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #14, released on 2020-11-20.

Webinar: Open Source Issues Remediation + Community Bridge and SPDX Online Tools + CII Best Practices

By automation, Featured, legal, licensing, News, security, standards, Webinar

In our biggest webinar to date, Jari Koivisto talked about Open Source Issues Remediation, Gary O’Neall talked about Community Bridge and SPDX Online Tools and David Wheeler talked about CII Best Practices (the project equivalent of the OpenChain standard). Check out the full recording and the slides below.

Check Out All The Slides

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #11, released on 2020-09-11.

Webinar: OpenChain Self-Certification Questionnaire

By Featured, licensing, News, standards, Webinar

This webinar was a live walk-through of the Conformance Questionnaire with example solutions to each question required for OpenChain conformance. It was designed to be immediately useful to any organization considering or undergoing OpenChain conformance.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #9, released on 2020-08-05.

Webinar: Compliance @ GitLab

By Featured, legal, licensing, News, Webinar
This image has an empty alt attribute; its file name is avatar.png

We took a look at how GitLab addresses compliance for this webinar on the 20th of July. Mo Khan, Senior Backend Engineer, explained the approach offered to users and why it is effective. One of the most interesting things we explored is how it all works with CI/CD, a hot topic in the OpenChain community and beyond.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #8, released on 2020-07-20.

Webinar: OpenChain China, Japan, Korea – a discussion on community building

By community, Featured, licensing, News, standards, Webinar

In this webinar we covered “OpenChain China, Japan, Korea – a discussion on community building” featuring short interviews with Jerry (China), Haksung (Korea) and Fukuchi San (Japan) about local community activity. Our goal was to share knowledge on what has worked, what has not, and how momentum can be kept in these unusual times. We hope these lessons will assist our fellows in Europe and North America while also illustrating some of the key successes in Asia.

This is part of the bi-weekly OpenChain Webinar series. Every two weeks we have international speakers covering a wide range of topics related to practical open source compliance challenges, solutions and considerations.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #6, released on 2020-06-22.

Webinar: Software Heritage + Making Compliance Scalable in a Container World

By community, Featured, legal, licensing, News, Webinar

This time we explored Software Heritage, an initiative whose goal is to collect, preserve, and share software code, and continued our discussion of containers from the perspective of scalable compliance.

Our speakers

Roberto Di Cosmo, Director at Software Heritage, explained why this initiative collects and preserves software in source code form with the understanding that software embodies key technical and scientific knowledge that humanity cannot afford to risk losing. His presentation helped provide insight into how such initiatives can link into activities like compliance automation in open source compliance, an area of immediate interest to the OpenChain community.

Scott Peterson, Senior Commercial Counsel at Red Hat, talked about how we can make compliance scalable in a container world. This talk will build on other recent presentations with a particular focus on efficiency and portability, with a “registry-native” approach to source code availability. Scott explained how this does not require updating container registries to include source code specific features, but instead can exploit features that are already contained in current registries.

Check Out the Slides

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #5, released on 2020-06-02.

Webinar: Unpacking SPDX 2 2 + SPDX Lite

By Featured, legal, licensing, News, standards, Webinar

In this webinar we unpacked how the newly released SPDX 2.2. SPDX, as a leading industry standard for Software Bill of Materials, plays a pivotal role in the implementation of practical manual and automated compliance programs.

Kate Stewart, Sr. Director of Strategic Programs at the Linux Foundation, explained how SPDX 2.2 works and what it means for the community. Kate has been a key driver of this standard over the last 10 years and can answer all your questions about what the current standard means, what projects support it, and the current state of the tooling landscape.

Yoshiyuki Ito, Principal Expert at RENESAS Electronics, provided an overview of SPDX Lite. This is a “Profile” for the SPDX 2.2 standard that helps companies deploy the Software Bill of Materials to match certain workflows, particularly with respect to suppliers to large companies using existing processes. Ito San and others in the OpenChain Japan Work Group created SDPX Lite to help ensure that the standard could seek adoption in as many production environments as possible with minimal friction.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #4, released on 2020-05-21.

Webinar: Contribution Policies + Open Source in M&A

By community, Featured, legal, licensing, News, standards, Webinar

In this webinar Tobie Langel spoke about ‘Open Source Contribution Policies That Don’t Suck.’ Leon Schwartz and Tony Decicco from GTC Law provided an overview of open source-related topics in the context of mergers, acquisitions, financings, investments, IPOs, divestitures, loans, customer license agreements, rep and warranty insurance and other transactions. Andrew Katz presented a due diligence questionnaire and sample warranties based on the the OpenChain specification.

More About This Webinar

Tobie Langel spoke about ‘Open Source Contribution Policies That Don’t Suck.’ In his own words: Open source contribution policies are long, boring, overlooked documents, that generally suck. They’re designed to protect the company at all costs. But in the process, end up hurting engineering productivity, and morale. Sometimes they even unknowingly put corporate IP at risk. But that’s not inevitable. It’s possible to write open source contribution policies that make engineers lives easier, boost morale and productivity, reduce attrition, and attract new talent. And it’s possible to do so while reducing the company’s IP risk, not increasing it.

Leon Schwartz and Tony Decicco from GTC Law provided an overview of open source-related topics in the context of mergers, acquisitions, financings, investments, IPOs, divestitures, loans, customer license agreements, rep and warranty insurance and other transactions. This covered:

  • Types of open source risk
  • Open source due diligence as part of transactions
  • Open source-related terms in agreements
  • The strategic use of open source in transactions

Andrew Katz presented a due diligence questionnaire and sample warranties based on the the OpenChain specification, and explained how adoption of this framework will drive further adoption of the standard. This builds on the observation that the OpenChain specification provides a great framework for due diligence and share purchase agreement warranties, even where the target is a software company which is not OpenChain compliant.

Check Out The Rest Of Our Webinars

This is OpenChain Webinar #3, released on 2020-05-07.