Re: Initiative requesting Combined effort by OpenChain members: Unbiased comparison of Open Source Tools For Benefit of Organizations.
What a great idea! Thanks. I'd make a small suggestion. The color code that you've selected. The more intense the red... the better. In a lot of countries, red tends to be a warning or alert color. This means that on quick glance, quite a few people will think the most red ones are the ones they want to avoid.
Unfortunately I don't know of a universally recognized color that would work. But I probably still would suggest green. 🙂
Also maybe instead of 0-1 have a 2 or 3 level grading? 0=no, 1=does it but clearly basic or flawed, 2=does it but misses some, 3=does a really good job at it.
Since these are major changes, I figured best to discuss rather than edit the sheet. 🙂
From: main@... <main@...> on behalf of Ravi, Dinesh via lists.openchainproject.org <Dinesh.Ravi=elektrobit.com@...>
Sent: Monday 1 June 2020 08:20
To: main@... <main@...>
Subject: [openchain] Initiative requesting Combined effort by OpenChain members: Unbiased comparison of Open Source Tools For Benefit of Organizations.
** This mail has been sent from an external source. Treat hyperlinks and attachments in this email with caution**
I’d like to open a mail chain that focus on providing an enough information (on pros & cons) of tools for the organization to decide for the open source audits.
This information will foster the competition between the OSS tool chain providers, Improve their quality, Force them to stick to competitive pricing models, will become a motivation force for other small players to pitch in their tools, Steer away from monopolization & to create an conductive market ecosystem for OSS compliance tooling.
From Action point I have already done my modest efforts based practical on field functional parameters.(disclosure: It currently doesn’t contain org level parameters for comparison & purely functional but contributors are welcome to improve)
Tools comparison project: https://github.com/dineshr93/open-source-code-license-audit-tools-Benchmark-Comparison
I’d urge openchain to clone this to their git & start accepting contributions from each org where they are using their compliance tools (commercial & OSS)
It would be great if standard org like openchain will appoint members to monitor the unbiased review on OSS toolings.
I stress the point of unbiased because we know some of sponsorship for open chain are directly coming from some prominent OSS tools providers.
Thanks & Regards