Date   

Invitation: OpenChain UK Work Group Meeting @ Thu Oct 13, 2022 12:00 - 14:00 (CEST) (main@lists.openchainproject.org)

 

OpenChain UK Work Group Meeting
Moorcrofts LLP and its sister compliance company Orcro Limited, as OpenChain partners invite you to join us at the next meeting of the OpenChain UK Work Group, taking place both virtually and physical
 
Moorcrofts LLP and its sister compliance company Orcro Limited, as OpenChain partners invite you to join us at the next meeting of the OpenChain UK Work Group, taking place both virtually and physically (Beck Greener, London) on Thursday 13 October, 11:00 - 13:00.

The keynote speaker for the event will be Liz Rice, Chief Open Source Officer with eBPF specialists, creators of the Cilium cloud native networking, security and observability project.

Liz is a member of the Open UK Board and was chair of the CNCF's Technical Oversight Committee 2019-2022, and co-chaired the KubeCon / CloudNativeCon 2018 events in Copenhagen, Shanghai and Seattle. She is also the author of Container Security, published by O'Reilly.

She has a wealth of software development, team, and product management experience from working on network protocols and distributed systems, and in digital technology sectors such as VOD, music, and VoIP. When not writing code, or talking about it, Liz loves riding bikes in places with better weather than her native London, competing in virtual races on Zwift, and making music under the pseudonym Insider Nine.

Agenda

11:00: Welcome and introduction by Andrew Katz (Orcro) & Sami Atabani (Arm)

11:10: News and Updates by Shane Coughlan (Linux Foundation)

11:25: OpenChain UK Work Group: Plans by Andrew Katz (Orcro) & Sami Atabani (Arm)

11:45: Liz Rice Key Note

12:45: AOB

13:00: Thank you and goodbye!

OpenChain, a project of the Linux Foundation, brings established governance principles to the software supply chain. It adopts best-practice from other compliance areas and maps them to software procurement, giving businesses a clear path to minimising infringement risk in procuring, developing and deploying software, with particular emphasis on use and re-use of free and open source software ("FOSS") components. The result is that open source licence compliance becomes more predictable, understandable and efficient for all participants in the software supply chain.

Why Join?
With a stellar roster of international businesses adopting the OpenChain framework for Open Source compliance and seeing the benefits of adopting best-practice – helping business teams work together towards a common goal, making Free and Open-Source Software (FOSS) more accessible to developers and reducing overall compliance effort, saving time, legal and engineering resources, it makes sense to unify and freely share this work, and help to embed it into the UK's software development culture.

With this in mind, the OpenChain UK Work Group was born. It is free to join, and open to anyone (whether in the UK or otherwise) interested in finding out more about why companies as diverse as Arm, Google, Scania, Hitachi Data Systems, Toyota, Facebook, Uber and Microsoft are embracing OpenChain, as well as smaller companies like B2M Solutions and NewRoCo. The group also aims to help developers' and organisations' journey through open source compliance by providing a practical and accessible platform for anyone in the UK to quickly sync, share information and save time across all aspects of open source compliance.

Book Now
To reserve your free place at either the physical or virtual meeting, on 13 October from 11:00 – 13:00, please complete the online booking form:

https://ojimarketing.us19.list-manage.com/track/click?u=100dfa4f88cfb2baa11d391c2&id=7e2a04c8e7&e=5d1e015448

When

Thursday Oct 13, 2022 ⋅ 12:00 – 14:00 (Central European Time - Paris)
Reply for main@...

Invitation from Google Calendar

You are receiving this email because you are an attendee on the event. To stop receiving future updates for this event, decline this event.

Forwarding this invitation could allow any recipient to send a response to the organizer, be added to the guest list, invite others regardless of their own invitation status, or modify your RSVP. Learn more


Invitation: OpenChain German Work Group Meeting @ Wed Nov 16, 2022 11:00 - 17:00 (CET) (main@lists.openchainproject.org)

 

OpenChain German Work Group Meeting
The OpenChain Germany Work Group will hold its next meeting in collaboration with PwC in Cologne, Germany on the 16th of November 2022. This meeting is open to all and will have plenty of time for net
 

The OpenChain Germany Work Group will hold its next meeting in collaboration with PwC in Cologne, Germany on the 16th of November 2022. This meeting is open to all and will have plenty of time for networking and sharing knowledge. Find out more by contacting us.

Agenda:

  • 11:00 – 11:15 Welcome (all)
  • 11:15 – 12:00 Introduction to OpenChain Project, news and way forward (Shane)
  • 12:00 – 12:30 Overview SBOM, Security & License Compliance (PwC)
  • 12:30 – 13:00 Self-Certification, Independent Assessment and Third Party Certification (PwC)

13:00 – 14:00 Lunch

  • 14:00 – 14:30 Discussion of focus topics of the German work group (Shane/all)
  • 14:30 – 15:00 Review and issue submission for ISO/IEC 5230 and the Security Assurance specification (Shane/all)
  • 15:30 – 16:00 Review and issue submission for the new playbooks for small, medium and large company adoption (Shane/all)

16:00 – 16:15 Bio Break

  • 16:15 – 16:45 Review and issue submission on automation based on the tooling landscape map (Shane/all)
  • 16:45 – 17:00 Wrap up & Next steps (PwC/Shane)

When

Wednesday Nov 16, 2022 ⋅ 11:00 – 17:00 (Central European Time - Paris)
Reply for main@...

Invitation from Google Calendar

You are receiving this email because you are an attendee on the event. To stop receiving future updates for this event, decline this event.

Forwarding this invitation could allow any recipient to send a response to the organizer, be added to the guest list, invite others regardless of their own invitation status, or modify your RSVP. Learn more


OpenChain Germany Work Group – 2022-11-16 in Cologne

 

OpenChain and PwC will host the next OpenChain Germany Work Group meeting on the 16th of November 2022 in Cologne. All welcome. Learn more here:
https://www.openchainproject.org/featured/2022/09/29/germany-wg-2022-11-16


OpenChain UK Work Group Meeting – 2022-10-13 in London

 

OpenChain, Moorcrofts and Orcro will host the next OpenChain UK Work Group meeting on the 13th of October 2022 in London. All welcome. Learn more here:
https://www.openchainproject.org/news/2022/09/29/uk-work-2022-10-13


REMINDER: SPECIAL CALL: ISO/IEC WG suggestions for Security Specification today at 08:00 UTC (2022-09-27)

 

tl;dr: we have an important specification call in just under an hour.

ISO/IEC WG/SC27 (security) has provided some feedback on the OpenChain Security Assurance Specification 1.0 for our review. Our review cycle runs from now until October 4th and you can get started on checking their comments via our issue tracker here:
https://github.com/OpenChain-Project/Security-Assurance-Specification/issues

We will hold a special call to discuss their comments on Tuesday the 27th of September 2022 at 08:00 UTC to review their comments.

We are providing some guidance on the review of these comments and suggestions.

(1) Our specification was completed after a multi-month process in March 2022, and it was ratified by our board for ISO/IEC JTC-1 PAS submission on the 14th of September 2022
(2) Therefore OpenChain Security Assurance Specification 1.0 is functionally complete
(3) We should review the ISO/IEC WG comments with this perspective
(4) We are looking for editorial adjusts for clarity and errors
(5) We are not looking to change the scope or function of OpenChain Security Assurance Specification 1.0 or any immediate clarity / error adjusted successor
(6) This is because we want to proceed with our JTC-1 PAS submission as approved by the OpenChain Governing Board
(7) But we can place any comments for scope and function adjustment into a deferred status
(8) And we will return to them for discussion around inclusion in OpenChain Security Assurance Specification 2.0

This meeting is held in the OpenChain Project Zoom room:
https://zoom.us/j/4377592799

Check your timezone:
PDT United States Pacific UTC-07:00
UTC Coordinated Universal Time UTC
CET Central European Time UTC+01:00
IST India Standard Time UTC+05:30
CST China Standard Time UTC+08:00
KST Korea Standard Time UTC+09:00
JST Japan Standard Time UTC+09:00

Compare timezones:
https://www.worldtimebuddy.com

Join via one tap mobile:
+86 10 8783 3177,,4377592799# Mainland China
+33 1 8699 5831,,4377592799# France
+49 69 7104 9922,,4377592799# Germany
+81 524 564 439,,4377592799# Japan
+82 2 3143 9612,,4377592799# Korea
+91 80 71 279 440,,4377592799# India
+886 (2) 7741 7473,,4377592799# Taiwan
+44 330 088 5830,,4377592799# UK
+13017158592,,4377592799# USA

Find your local country number:
https://zoom.us/u/awFnORNiA
Meeting ID: 437 759 2799

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan


October's Ospology.live - OSPO Workshop:Stockholm, Sweden

Sean McIlroy (LF, PM)
 

Dear all

October's Ospology.live will be hosted by OSPO at Ericsson (Stockholm, Sweden) and co-organized with TODO, OpenChain, SPDX, CHAOSS and OpenSSF projects.
Join the first in-person Workshop to help organizations effectively implement Open Source Program Offices (OSPOs) based on specific region needs in Europe. 
If you have any questions, please contact the event Organizer - Ana Jimenez (asantamaria@...)

Regards

Sean Mcilroy

Program Manager - Linux Foundation
Timezone: GMT 


Reminder: Call tomorrow to discuss ISO/IEC WG suggestions for OpenChain Security Assurance Specification 1.0

 

ISO/IEC WG/SC27 (security) has provided some feedback on the new OpenChain Security Assurance Specification 1.0 for our review. Our review cycle runs from now until October 4th. Get started via our issue tracker here:
https://github.com/OpenChain-Project/Security-Assurance-Specification/issues

Our call to address the comments takes place tomorrow (Tuesday 27th September) at 08:00 UTC. Calendar invite attached.

Regards

Shane


Invitation: SPECIAL CALL TO ACTION: ISO/IEC WG suggestions for OpenCh... @ Tue Sep 27, 2022 09:00 - 10:00 (WEST) (main@lists.openchainproject.org)

 

SPECIAL CALL TO ACTION: ISO/IEC WG suggestions for OpenChain Security Assurance Specification 1.0 - CALL UTC
ISO/IEC WG/SC27 (security) has provided some feedback on the OpenChain Security Assurance Specification 1.0 for our review. Our review cycle runs from now until October 4th and you can get started on
 
ISO/IEC WG/SC27 (security) has provided some feedback on the OpenChain Security Assurance Specification 1.0 for our review. Our review cycle runs from now until October 4th and you can get started on checking their comments via our issue tracker here:
https://github.com/OpenChain-Project/Security-Assurance-Specification/issues

We will hold a special call to discuss their comments on Tuesday the 27th of September 2022 at 08:00 UTC to review their comments.

We are providing some guidance on the review of these comments and suggestions.

(1) Our specification was completed after a multi-month process in March 2022, and it was ratified by our board for ISO/IEC JTC-1 PAS submission on the 14th of September 2022
(2) Therefore OpenChain Security Assurance Specification 1.0 is functionally complete
(3) We should review the ISO/IEC WG comments with this perspective
(4) We are looking for editorial adjusts for clarity and errors
(5) We are not looking to change the scope or function of OpenChain Security Assurance Specification 1.0 or any immediate clarity / error adjusted successor
(6) This is because we want to proceed with our JTC-1 PAS submission as approved by the OpenChain Governing Board
(7) But we can place any comments for scope and function adjustment into a deferred status
(8) And we will return to them for discussion around inclusion in OpenChain Security Assurance Specification 2.0

This meeting is held in the OpenChain Project Zoom room:
https://zoom.us/j/4377592799

Check your timezone:
PDT United States Pacific UTC-07:00
UTC Coordinated Universal Time UTC
CET Central European Time UTC+01:00
IST India Standard Time UTC+05:30
CST China Standard Time UTC+08:00
KST Korea Standard Time UTC+09:00
JST Japan Standard Time UTC+09:00

Compare timezones:
https://www.worldtimebuddy.com

Join via one tap mobile:
+86 10 8783 3177,,4377592799# Mainland China
+33 1 8699 5831,,4377592799# France
+49 69 7104 9922,,4377592799# Germany
+81 524 564 439,,4377592799# Japan
+82 2 3143 9612,,4377592799# Korea
+91 80 71 279 440,,4377592799# India
+886 (2) 7741 7473,,4377592799# Taiwan
+44 330 088 5830,,4377592799# UK
+13017158592,,4377592799# USA

Find your local country number:
https://zoom.us/u/awFnORNiA
Meeting ID: 437 759 2799

When

Tuesday Sep 27, 2022 ⋅ 09:00 – 10:00 (Western European Time - Faroe)
Reply for main@...

Invitation from Google Calendar

You are receiving this email because you are an attendee on the event. To stop receiving future updates for this event, decline this event.

Forwarding this invitation could allow any recipient to send a response to the organizer, be added to the guest list, invite others regardless of their own invitation status, or modify your RSVP. Learn more


SPECIAL CALL TO ACTION: ISO/IEC WG suggestions for OpenChain Security Assurance Specification 1.0 - CALL ON TUESDAY AT 08:00 UTC

 

Dear all

ISO/IEC WG/SC27 (security) has provided some feedback on the OpenChain Security Assurance Specification 1.0 for our review. Our review cycle runs from now until October 4th and you can get started on checking their comments via our issue tracker here:
https://github.com/OpenChain-Project/Security-Assurance-Specification/issues

We will hold a special call to discuss their comments on Tuesday the 27th of September 2022 at 08:00 UTC to review their comments.

I want to provide some guidance on the review of these comments and suggestions.

(1) Our specification was completed after a multi-month process in March 2022, and it was ratified by our board for ISO/IEC JTC-1 PAS submission on the 14th of September 2022
(2) Therefore OpenChain Security Assurance Specification 1.0 is functionally complete
(3) We should review the ISO/IEC WG comments with this perspective
(4) We are looking for editorial adjusts for clarity and errors
(5) We are not looking to change the scope or function of OpenChain Security Assurance Specification 1.0 or any immediate clarity / error adjusted successor
(6) This is because we want to proceed with our JTC-1 PAS submission as approved by the OpenChain Governing Board
(7) But we can place any comments for scope and function adjustment into a deferred status
(8) And we will return to them for discussion around inclusion in OpenChain Security Assurance Specification 2.0

Regards

Shane


Invitation: OpenChain Monthly Community Call - 09:00 CST (01:00 UTC) ... @ Monthly from 02:00 to 03:00 on the third Tuesday (WEST) (main@lists.openchainproject.org)

 

OpenChain Monthly Community Call - 09:00 CST (01:00 UTC) on 3rd Tuesday
This is the OpenChain Monthly Community Call - 09:00 CST (01:00 UTC) on 3rd Tuesday. It is open to every individual and company regardless of their membership of Linux Foundation or the OpenChain
 
This is the OpenChain Monthly Community Call - 09:00 CST (01:00 UTC) on 3rd Tuesday. It is open to every individual and company regardless of their membership of Linux Foundation or the OpenChain Project. It provides a forum to bring together the various things the OpenChain community is doing around the world, from building our family of standard (licensing compliance and now security compliance), assisting with tooling, SBOMs and OSPOs, and facilitating industry specific discussions in areas like telco and automotive.

Agenda
  1. Introductions 
  2. Specification (process standards) news 
  3. SBOM news
  4. OSPO news
  5. Automation news 
  6. Community feedback and comments - issues for standards and core supporting material
  7. Community feedback and comments - issues for reference and supporting material
  8. Community feedback and comments - issues to support other projects
  9. Any other business
  10. Close of meeting

This meeting is held in the OpenChain Project Zoom room:
https://zoom.us/j/4377592799

Check your timezone:
PDT United States Pacific UTC-07:00
UTC Coordinated Universal Time UTC
CET Central European Time UTC+01:00
IST India Standard Time UTC+05:30
CST China Standard Time UTC+08:00
KST Korea Standard Time UTC+09:00
JST Japan Standard Time UTC+09:00

Compare timezones:
https://www.worldtimebuddy.com

Join via one tap mobile:
+86 10 8783 3177,,4377592799# Mainland China
+33 1 8699 5831,,4377592799# France
+49 69 7104 9922,,4377592799# Germany
+81 524 564 439,,4377592799# Japan
+82 2 3143 9612,,4377592799# Korea
+91 80 71 279 440,,4377592799# India
+886 (2) 7741 7473,,4377592799# Taiwan
+44 330 088 5830,,4377592799# UK
+13017158592,,4377592799# USA

Find your local country number:
https://zoom.us/u/awFnORNiA
Meeting ID: 437 759 2799

When

Monthly from 02:00 to 03:00 on the third Tuesday (Western European Time - Faroe)
RSVP for main@... for all events in this series

Invitation from Google Calendar

You are receiving this email because you are an attendee on the event. To stop receiving future updates for this event, decline this event.

Forwarding this invitation could allow any recipient to send a response to the organizer, be added to the guest list, invite others regardless of their own invitation status, or modify your RSVP. Learn more


Invitation: OpenChain Monthly Community Call - 09:00 PST (16:00 UTC) ... @ Monthly from 17:00 to 18:00 on the first Tuesday (WEST) (main@lists.openchainproject.org)

 

OpenChain Monthly Community Call - 09:00 PST (16:00 UTC) on 1st Tuesday
This is the OpenChain Monthly Community Call - 09:00 PST (16:00 UTC) on 1st Tuesday. It is open to every individual and company regardless of their membership of Linux Foundation or the OpenChain Proj
 
This is the OpenChain Monthly Community Call - 09:00 PST (16:00 UTC) on 1st Tuesday. It is open to every individual and company regardless of their membership of Linux Foundation or the OpenChain Project. It provides a forum to bring together the various things the OpenChain community is doing around the world, from building our family of standard (licensing compliance and now security compliance), assisting with tooling, SBOMs and OSPOs, and facilitating industry specific discussions in areas like telco and automotive.

Agenda
  1. Introductions 
  2. Specification (process standards) news 
  3. SBOM news
  4. OSPO news
  5. Automation news 
  6. Community feedback and comments - issues for standards and core supporting material
  7. Community feedback and comments - issues for reference and supporting material
  8. Community feedback and comments - issues to support other projects
  9. Any other business
  10. Close of meeting

This meeting is held in the OpenChain Project Zoom room:
https://zoom.us/j/4377592799

Check your timezone:
PDT United States Pacific UTC-07:00
UTC Coordinated Universal Time UTC
CET Central European Time UTC+01:00
IST India Standard Time UTC+05:30
CST China Standard Time UTC+08:00
KST Korea Standard Time UTC+09:00
JST Japan Standard Time UTC+09:00

Compare timezones:
https://www.worldtimebuddy.com

Join via one tap mobile:
+86 10 8783 3177,,4377592799# Mainland China
+33 1 8699 5831,,4377592799# France
+49 69 7104 9922,,4377592799# Germany
+81 524 564 439,,4377592799# Japan
+82 2 3143 9612,,4377592799# Korea
+91 80 71 279 440,,4377592799# India
+886 (2) 7741 7473,,4377592799# Taiwan
+44 330 088 5830,,4377592799# UK
+13017158592,,4377592799# USA

Find your local country number:
https://zoom.us/u/awFnORNiA
Meeting ID: 437 759 2799

When

Monthly from 17:00 to 18:00 on the first Tuesday (Western European Time - Faroe)
RSVP for main@... for all events in this series

Invitation from Google Calendar

You are receiving this email because you are an attendee on the event. To stop receiving future updates for this event, decline this event.

Forwarding this invitation could allow any recipient to send a response to the organizer, be added to the guest list, invite others regardless of their own invitation status, or modify your RSVP. Learn more


IMPORTANT: New OpenChain Monthly Community Call - 09:00 PST (16:00 UTC) on 1st Tuesday / 09:00 CST (01:00 UTC) on 3rd Tuesday

 

Dear all

We have been experimenting with various structures for our calls for a couple of months (time and topic defined calls to action etc.). After collecting community feedback, I would like to announce a new Monthly Community Call Schedule where:
(1) Once per month for primary timezones we will hold a structured one hour meeting
(2) This meeting will have a repeating core agenda so you always know what you are getting
(3) We will be giving plenty of space for our work groups to ensure they share core news with you in a timely manner
(4) You can provide direct feedback on aspects of community work, management and future planning

This new structure is important to help us bring together the various things the OpenChain community is doing around the world, from building our family of standard (licensing compliance and now security compliance), assisting with tooling, SBOMs and OSPOs, and facilitating industry specific discussions in areas like telco and automotive.

The calendar invitations for our new meeting schedule will go out shortly. We will start in October and continue on this schedule to end-2023 before any further adjustments, allowing plenty of predictability in your calendars.

Regards

Shane


Shane Coughlan
General Manager, OpenChain
e: scoughlan@...
p: +81 (0) 80 4035 8083
w: www.linuxfoundation.org

Schedule a call:
https://meetings.hubspot.com/scoughlan


Re: Implementing Section 3.3.2 of OC Standard on common license use cases

 

I am adding Japan and Korea work groups to this thread as some of the companies there have been doing case studies. :)

On Sep 23, 2022, at 12:50, Mattran, Mary <mary.mattran@...> wrote:

I am interested to know how other companies are implementing section 3.3.2 of the standard which discusses how the program should be capable of handling "common open source license use cases". Do you have a written process for each use case? Do you have people who check for license incompatibilities? Do you have a list of the common licenses and the obligations for various use cases?


OpenChain Summit 2022 – Full Recording

 

The OpenChain Project held its annual an all-day summit adjacent to Open Source Summit Europe (OSS EU) on the 14th of September. This event featured news from our latest board meeting (including the decision to launch our new security specification), a deep dive into a significant new automation landscape to assist with license, security and export control compliance, SBOM discussions and more.

Check out the full recording at the link below alongside copies of our excellent keynote presentation from Andrew Katz of Orcro and the automation landscape capability map presentation delivered by Jan Thielscher of EACG on behalf of the OpenChain Reference Tooling Work Group.

Here are the key takeaways:
• The OpenChain Project now maintains a family of specifications to build trust in the supply chain. We started with license compliance and now we have a sister standard for security.
• Open source automation for open source license, security and export control compliance is getting a clear capability map to guide investment of resources and save time.
• Software Bill of Materials (SBOM) has seen great progress in the last year or two, and the OpenChain Telco Work Group is working on very practical items related to market adoption.
• Open source licensing discussions have become somewhat stale and there is scope for considering the future of open source licensing approaches.

https://www.openchainproject.org/news/2022/09/23/openchain-summit-2022-full-recording


Implementing Section 3.3.2 of OC Standard on common license use cases

Mattran, Mary
 

I am interested to know how other companies are implementing section 3.3.2 of the standard which discusses how the program should be capable of handling "common open source license use cases".  Do you have a written process for each use case?  Do you have people who check for license incompatibilities?  Do you have a list of the common licenses and the obligations for various use cases?  


Be part of the OpenChain Partner Webinar Series - An easy way to learn about services supporting ISO/IEC 5230, the International Standard for open source

Sean McIlroy (LF, PM)
 

As you may be aware, the OpenChain Project has launched a series of webinars that explains the services available from our partners around the world.
Our goal is to help you understand your options if you seek third party assistance for adoption, refinement or certification.

Currently we have two slots open, after which we will discuss scheduling further webinars with you, and the best timing for their release. 
Here is where you can lock down your slot: https://docs.google.com/spreadsheets/d/1-c9iQDuDb5oYQqA7q2RgIQMOpblZSTlKsRGOR9xHXYg/edit?usp=sharing

The format is pretty simple: you pre-record a webinar that we play at the appropriate data and time, and we encourage questions to happen on the main mailing list to maximize community engagement. Ideally we would like you to provide the recording in 1080p mp4 format.

Webinars so far:
The agenda for our next 3 webinars is:
  • 2022-10-04 SecTrend
  • 2022-10-18 Bitsea GmbH
  • 2022-11-01 PwC
If you have any questions, please don't hesitate to contact me

Regards

Sean Mcilroy
Program Manager
Timezone: GMT 


Re: List of open chain calendar events for partners

 

Indeed!

We were doing a short experiment with call to action (time limited) and holding off on mini-summits pending the large summit last week.

A revised schedule will be announced in less than 24 hours 🙂

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan

On Sep 21, 2022, at 19:33, Christopher Wood <cvw01@...> wrote:


Hi Steve and Shane
It’s not just you Steve. I thought the same thing when I looked at the schedule this morning. 
Best
Chris

On Sep 21, 2022, at 9:55 AM, Steve Kilbane <stephen.kilbane@...> wrote:



Hi Shane,

 

Actually, that community calendar is looking quite sparse. I’m seeing the regular Telco sessions and a single German workgroup session, but nothing else for the next year. Are all the entries going to be re-added now that the European holiday season is done?

 

(or is it just me? I swear that calendar doesn’t like me…)

 

steve

 

From: main@... <main@...> on behalf of Shane Coughlan <scoughlan@...>
Date: Wednesday, 21 September 2022 at 15:36
To: OpenChain Main <main@...>
Subject: Re: [openchain] List of open chain calendar events for partners

[External]

Yes, of course :)

Our community calendar is located here and is always updated with the latest event information:
https://urldefense.com/v3/__https://www.openchainproject.org/get-started/participate__;!!A3Ni8CS0y2Y!5e39oNiMU5XuIrjGWIt84rJujEZhoAGkMNpgZ0ccY8ViEGqV1AdL_vcVTitxyTuTDgoEh19brgWdAuLqDnVVUHkIvA1ectk$ 

> On Sep 21, 2022, at 16:34, Lubos Kocman via lists.openchainproject.org <lubos.kocman=suse.com@...> wrote:
>
> Hello openchain community!
>
> my calendar seems to have quite a lot of outdated openchain events (for
> partners etc). Is there a list of regular (partner) events or even
> better a fresh .ics that I could subscribe to?
>
> Thank you very much in advance
>
> --
> Luboš Kocman (he/him)
> openSUSE Leap Release Manager
>
> SUSE
> +1 2345678910
> https://urldefense.com/v3/__http://www.suse.com__;!!A3Ni8CS0y2Y!5e39oNiMU5XuIrjGWIt84rJujEZhoAGkMNpgZ0ccY8ViEGqV1AdL_vcVTitxyTuTDgoEh19brgWdAuLqDnVVUHkIc8htXJc$  
>
>
>
>
>
>






OpenChain Security Assurance Specification 1.0 now available

 

Dear all

The OpenChain Security Assurance Specification 1.0 is now available:
https://github.com/OpenChain-Project/Security-Assurance-Specification/blob/main/Security-Assurance-Specification/1.0/en/openchain-security-specification-1.0.md

This specification is built from the Security Assurance Reference Guide 2.0 (Release Candidate 1) published on 2022-03-28. That completed reference specification document went through a final approval process via editing on our specification list and calls, before graduating to a governing board vote to transform into this published security specification on 2022-09-14.

We will now proceed to ISO/IEC JTC-1 PAS submission with an estimated completion date of circa mid-2023. In the meantime, our security assurance specification is ready for market adoption as a de facto standard.

Over the next couple of weeks we have some time for sanity-checks and minor adjustments. I would like to begin that process today.

There are two tasks for the community:

(1) Check our Security Assurance Specification 1.0 against the Security Assurance Reference Guide 2.0 (Release Candidate 1) to ensure Sections 1, 2 and 3 match. You can find the Security Assurance Reference Guide 2.0 (Release Candidate 1) here:
https://github.com/OpenChain-Project/Security-Assurance-Specification/tree/main/Security-Assurance-Guide-Depreciated/2.0

(2) Check the OpenChain Security Assurance Specification 1.0 for any typographical errors that have snuck through our existing editing process. You can find the document linked at the start of this email or here:
https://github.com/OpenChain-Project/Security-Assurance-Specification/blob/main/Security-Assurance-Specification/1.0/en/openchain-security-specification-1.0.md

This email constitutes a soft launch for this specification. Over the next few days we will start broader distribution of this news, including on social media and via blog posts. However, you can begin sharing it immediately with your teams and peers.

Please note: the scope of this reference specification may expand over time based on community feedback. However, comments and notes should be confined to the existing scope at this juncture. Our specification is complete barring minor adjustments for readability, editing and clarity.

Regards

Shane


Shane Coughlan
General Manager, OpenChain
e: scoughlan@...
p: +81 (0) 80 4035 8083
w: www.linuxfoundation.org

Schedule a call:
https://meetings.hubspot.com/scoughlan


Re: List of open chain calendar events for partners

Christopher Wood
 

Hi Steve and Shane
It’s not just you Steve. I thought the same thing when I looked at the schedule this morning. 
Best
Chris

On Sep 21, 2022, at 9:55 AM, Steve Kilbane <stephen.kilbane@...> wrote:



Hi Shane,

 

Actually, that community calendar is looking quite sparse. I’m seeing the regular Telco sessions and a single German workgroup session, but nothing else for the next year. Are all the entries going to be re-added now that the European holiday season is done?

 

(or is it just me? I swear that calendar doesn’t like me…)

 

steve

 

From: main@... <main@...> on behalf of Shane Coughlan <scoughlan@...>
Date: Wednesday, 21 September 2022 at 15:36
To: OpenChain Main <main@...>
Subject: Re: [openchain] List of open chain calendar events for partners

[External]

Yes, of course :)

Our community calendar is located here and is always updated with the latest event information:
https://urldefense.com/v3/__https://www.openchainproject.org/get-started/participate__;!!A3Ni8CS0y2Y!5e39oNiMU5XuIrjGWIt84rJujEZhoAGkMNpgZ0ccY8ViEGqV1AdL_vcVTitxyTuTDgoEh19brgWdAuLqDnVVUHkIvA1ectk$ 

> On Sep 21, 2022, at 16:34, Lubos Kocman via lists.openchainproject.org <lubos.kocman=suse.com@...> wrote:
>
> Hello openchain community!
>
> my calendar seems to have quite a lot of outdated openchain events (for
> partners etc). Is there a list of regular (partner) events or even
> better a fresh .ics that I could subscribe to?
>
> Thank you very much in advance
>
> --
> Luboš Kocman (he/him)
> openSUSE Leap Release Manager
>
> SUSE
> +1 2345678910
> https://urldefense.com/v3/__http://www.suse.com__;!!A3Ni8CS0y2Y!5e39oNiMU5XuIrjGWIt84rJujEZhoAGkMNpgZ0ccY8ViEGqV1AdL_vcVTitxyTuTDgoEh19brgWdAuLqDnVVUHkIc8htXJc$  
>
>
>
>
>
>






Re: List of open chain calendar events for partners

 

Yes, the calendar is about to get a ton of new entries, but currently is looking quiet 🙂

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan

On Sep 21, 2022, at 16:55, Steve Kilbane <stephen.kilbane@...> wrote:



Hi Shane,

 

Actually, that community calendar is looking quite sparse. I’m seeing the regular Telco sessions and a single German workgroup session, but nothing else for the next year. Are all the entries going to be re-added now that the European holiday season is done?

 

(or is it just me? I swear that calendar doesn’t like me…)

 

steve

 

From: main@... <main@...> on behalf of Shane Coughlan <scoughlan@...>
Date: Wednesday, 21 September 2022 at 15:36
To: OpenChain Main <main@...>
Subject: Re: [openchain] List of open chain calendar events for partners

[External]

Yes, of course :)

Our community calendar is located here and is always updated with the latest event information:
https://urldefense.com/v3/__https://www.openchainproject.org/get-started/participate__;!!A3Ni8CS0y2Y!5e39oNiMU5XuIrjGWIt84rJujEZhoAGkMNpgZ0ccY8ViEGqV1AdL_vcVTitxyTuTDgoEh19brgWdAuLqDnVVUHkIvA1ectk$ 

> On Sep 21, 2022, at 16:34, Lubos Kocman via lists.openchainproject.org <lubos.kocman=suse.com@...> wrote:
>
> Hello openchain community!
>
> my calendar seems to have quite a lot of outdated openchain events (for
> partners etc). Is there a list of regular (partner) events or even
> better a fresh .ics that I could subscribe to?
>
> Thank you very much in advance
>
> --
> Luboš Kocman (he/him)
> openSUSE Leap Release Manager
>
> SUSE
> +1 2345678910
> https://urldefense.com/v3/__http://www.suse.com__;!!A3Ni8CS0y2Y!5e39oNiMU5XuIrjGWIt84rJujEZhoAGkMNpgZ0ccY8ViEGqV1AdL_vcVTitxyTuTDgoEh19brgWdAuLqDnVVUHkIc8htXJc$  
>
>
>
>
>
>





1 - 20 of 4821