OpenChain Newsletter #52

​ Newsletter – Issue 52 – March 2023

The OpenChain Newsletter provides a monthly summary of our work. It contains an overview of what we are doing to build trust around license compliance and security in the open source supply chain. We accept suggestions and ideas. Feel free to mail us at any time.

This edition of the newsletter was created and shared by Qiuyue Qi of OpenSCA, and we provide our thanks for the contribution!

Enlargement

Socionext & Suzhou Prism Colorful Information Technology Co., Ltd. have all announced conformance with ISO/IEC 5230.

• Socionext is the latest company to announce an ISO/IEC 5230 conformant program
• Suzhou Prism Colorful Information Technology Co., Ltd. is the latest company with an ISO/IEC 5230 conformant program

CESI joined the OpenChain Project as the official partner.

• CESI is the Latest OpenChain Partner and Third-Party Certifier

Activities

The OpenChain Project has had open discussions with LG Electronics and SK Group, presented at LF APAC Leadership Summit and delivered a speech at OSPO Summit.

• OpenChain @ LG Electronics
• OpenChain @ SK Group
• OpenChain @ LF APAC Leadership Summit in Hong Kong – Outcomes
• OpenChain @ OSPO Summit

Materials

There are two vital updates to our essential materials to follow:

• OpenChain Project One Slide Overview Updated
• ISO/IEC 5230 One Pager Updated – OpenChain

Moreover, we have prepared an introduction to our standard for open source security assurance, ISO/IEC DIS 18974, for those who are interested.

• Introducing ISO/IEC DIS 18974, Our Standard For Open Source Security Assurance

The record of LF Training Courses Translation Project is also now available.

• OpenChain Germany – LF Training Courses Translation Project 2024-03-03 – Recording

Webinar

We have held two webinars, respectively talking about an overview of SPDX 3.0 (#50) and the recap of FOSDEM (#49)

• OpenChain Webinar #50 – An Overview of SPDX 3.0
• OpenChain Webinar #49 – FOSDEM Recap

Routine

March has also witnessed lots of work done with our work groups and monthly meetings across the globe.

Our legal work group has been officially announced.

• Announcing The OpenChain Legal Work Group

Both telco and export control work groups initiated insightful discussions.

• Telco Work Group – Afternoon – 2023-03-02
• Telco Work Group – Morning – 2023-03-02
• OpenChain Export Control Work Group – Third Meeting – 2023-03-07 – Recording

Details of work groups in Germany, Korea and the UK can be found in the following links:

• OpenChain Germany Work Group Meeting 2023-03-30 – Outcomes
• OpenChain Korea Work Group Meeting 2023-03-28 – Outcomes
• OpenChain UK Work Group Meeting 2023-03-28 – Outcomes

Checking our monthly meeting below:

• OpenChain Monthly Meeting – North America / Asia – 2023-03-21
• OpenChain Monthly Meeting 2023-03-07 – Recording

Others

OpenChain ISO/IEC 5230:2020 is featured in Journal Of Software Volume 33, Issue 3, 2023.

• OpenChain ISO/IEC Featured In Journal Of Software (软件学报)

Check Out All Our Previous Newsletters：

• https://www.openchainproject.org/news/newsletter