Latest in Industry and Research Publications
-
Challenges of tracking and documenting open source dependencies in products [OSS 2020]
Software vendors need to manage the dependencies of the open source components used in their products. Without this management, license compliance would be impossible, export restrictions could not be maintained, and security vulnerabilities would remain unknown to the vendor. The management of these dependencies has grown in an ad-hoc fashion in most companies. As such,…
-
The ecosystem of openKONSEQUENZ, a user-led open source foundation [OSS 2020]
Companies without expertise in software development can opt to form consortia to develop open source software to meet their needs, as an alternative to the build-or-buy decision. Such user-led foundations are little understood, due to a limited number of published examples. In particular, almost nothing is known about the ecosystems surrounding user-led foundations. Our work…
-
An Analysis of Copyleft Compliance Behavior
It is the year 2020 and my Twitterverse and other professional time sinks are still full of … comments about Copyleft. So for the first time ever, I decided to venture into that pit. I see four observable behaviors when it comes to complying with copyleft. Kickin’ and screamin’ No use Dump and run Enlightened…