Date   

Re: OpenChain Supplier Education Leaflet - German Draft underway

Marcel (PwC DE)
 

Hello all,

Thank you, Stefan, for the German translation of the OpenChain Supplier Leaflet!
Please find attached our suggestions/corrections for the document.
Happy to discuss or get any further feedback to then complete the leaflet.

Kind regards,
Marcel


Marcel Scholze (DE)
PwC | Director | Open Source Software Services & IT-Sourcing
Phone: +49 69 95851746 | Mobile: +49 151 161 57 049
Email: marcel.scholze@...
PricewaterhouseCoopers GmbH Wirtschaftsprüfungsgesellschaft
Friedrich-Ebert-Anlage 35-37 | 60327 | Frankfurt a. M. | Germany

Find out about Open Source Software Management: https://www.pwc.de/opensource

Vorsitzender des Aufsichtsrates: WP StB Dr. Norbert Vogelpoth
Geschäftsführer: WP StB Dr. Ulrich Störk, WP StB Dr. Peter Bartels, Dr. Joachim Englert, WP StB Petra Justenhoven, WP Clemens Koch, StB Marius Möller, WP StB Uwe Rittmann, StB RA Klaus Schmidt, StB CPA Mark Smith
Sitz der Gesellschaft: Frankfurt am Main, Amtsgericht Frankfurt am Main HRB 107858
PricewaterhouseCoopers GmbH Wirtschaftsprüfungsgesellschaft ist Mitglied von PricewaterhouseCoopers International, einer Company limited by guarantee registriert in England und Wales
Datenschutz: Hinweise zur Datenverarbeitung bei PricewaterhouseCoopers GmbH WPG finden Sie unter Datenschutzhinweise PricewaterhouseCoopers GmbH WPG


On Fri, 7 Feb 2020 at 18:38, Shane Coughlan <scoughlan@...> wrote:
Stefan from Fiducia & GAD IT announced yesterday that work is well advanced on a German translation of our Supplier Education Leaflet. Originally created by a sub-group of the OpenChain Japan Work Group, the supplier education leaflet is available in Japanese, English, Simplified and Traditional Chinese, as well as in Vietnamese as a draft.

See Stefan’s full announcement and call for support below.

==

As discussed yesterday in Nuremberg during our kick-off meeting of the German OpenChain Working Group, I would like to reach out for support regarding finalisation of a translation of the Open Chain Supplier Leaflet into German.

You can see the current state-of-work at
https://github.com/OCSpecGermanTranslation/OpenChain-SuppierLeaflet-GermanTranslation/blob/master/supplier-leaflet/de/OpenChain-GeneralGuideline-E-0608_DE.pdf

The layout is not yet as complete as in the original - I would like to finalise the design after having sorted out the final German text. Thus, in a first round, quality checking of the text would be a good point to start :-)

My ‚request-for-contribution‘ to you, if you currently want to / can support:
Could you please compare the current German translation draft to the English version at
https://github.com/OCSpecGermanTranslation/OpenChain-SuppierLeaflet-GermanTranslation/blob/master/supplier-leaflet/supplier-leaflet-1.0-en.pdf
and provide corrections and suggestions for improvement? Please feel free to direct any comments to my address Stefan.thanheiser@....

(Should any of you want to go deeper: I ported the document from the proprietary Adobe format I found at Github (sorry, if there should have been any other format there -maybe I did not dig deep enough into the directory structure) to a format of the open source tool Scribus - why not use OSS tools when writing about OSS? ;-).
The "scribus source file" for the PDF can be found at
https://github.com/OCSpecGermanTranslation/OpenChain-SuppierLeaflet-GermanTranslation/blob/master/supplier-leaflet/de/OpenChain-GeneralGuideline-E-0608_DE.sla
and can be edited using Scribus v1.5.5.)

Thank you in advance for your support and best regards,
Stefan



Diese Information ist ausschliesslich fuer den Adressaten bestimmt und kann vertrauliche oder gesetzlich geschuetzte Informationen enthalten. Wenn Sie nicht der bestimmungsgemaesse Adressat sind, unterrichten Sie bitte den Absender und vernichten Sie diese Mail. Anderen als dem bestimmungsgemaessen Adressaten ist es untersagt, diese E-Mail zu lesen, zu speichern, weiterzuleiten oder ihren Inhalt auf welche Weise auch immer zu verwenden. Wir verwenden aktuelle Virenschutzprogramme. Fuer Schaeden, die dem Empfaenger gleichwohl durch von uns zugesandte mit Viren befallene E-Mails entstehen, schliessen wir jede Haftung aus. 
* * * * *
The information contained in this email is intended only for its addressee and may contain confidential and/or privileged information. If the reader of this email is not the intended recipient, you are hereby notified that reading, saving, distribution or use of the content of this email in any way is prohibited. If you have received this email in error, please notify the sender and delete the email. We use updated antivirus protection software. We do not accept any responsibility for damages caused anyhow by viruses transmitted via email.


OpenChain Bi-Weekly Webinar at 14:00 UTC: OpenChain ISO 5230 in the field of Venture Capital

 

We will hold our regular OpenChain Bi-Weekly Webinar at 14:00 UTC today. Our speaker will be Martin Callinan from Source Code Control Limited on OpenChain ISO 5230 in the field of Venture Capital. This is an emerging space for us, but one that appears to offer similar promise to existing use of OpenChain in Mergers and Acquisitions.

Join at: https://us02web.zoom.us/j/9990120120?pwd=NzVCaFE2L1RRRFZaSkk0dm8xdlplUT09

We had hoped to also have Nicole Pappler from AlektoMetis on OpenChain ISO 5230 and Software Quality Management, but due to unavoidable matters she has deferred her talk to a future webinar. Watch this space!


OpenChain Japan WG: Newbies Session #2: 2021-05-21 (Friday)

 

OpenChain Japan WG: Newbies Session #2: 2021-05-21 (Friday): We will hold our second meeting for people new to OpenChain on the 21st of May. This informal social meeting will be held in Japanese. Feel free to enjoy drinks and snacks! https://www.openchainproject.org/featured/2021/05/17/japan-wg-newbies-2


OpenChain Q1 Survey - Results and Notes

 

Dear all

It is time to explore the results of our Q1 survey! Attached is the full document. Let’s check out the highlights:

(1) Engagement and satisfaction is rated as very good or (more frequently) excellent across the board. The vast majority of respondents believe that we are “Very Good” or “Excellent” in putting forward what we are doing and sharing our information – either the business value, conformance, reference materials, and our website. Most importantly, people see us as a community that is easy to engage with and easy to get help from.

(2) Our conformance response revealed something interesting. About half of our respondents are primarily interested in something other than a private health of their compliance program or being listed publicly as having an OpenChain conformant program.This is worth digging into more (and we will), but some preliminary notes are:
(i) Feedback indicates that a relatively small percentage are seeking public announcements regarding conformance at this juncture, regardless of internal compliance activities. Their focus is instead on internal (or inter-supply chain) improvements and conformance.
(ii) We additionally have a number of companies engaging with OpenChain ISO 5230 with applications outside of our core scope of conformance for the purpose of license compliance. These include entities engaging for activities related to security, mergers and acquisitions, and other business processes. We knew this from participants on our calls and so on, but it’s interesting how many of our community participants appear to fit into this demographic.

(3) About a third of respondents have used our online conformance web app, and those that have found it excellent in its ease of use, while about a third of respondents are not interested in getting more help conforming with OpenChain ISO 5230:2020 in the future. From other sources we have indications that this is due to two factors:
(i) People are using the specification directly for conformance or using our downloadable questionnaire.
(ii) People are getting assistance from third parties such as participants in our partner program.

(4) We asked broader questions in the survey than those related only to OpenChain. For example, we asked about tooling, software bill of materials and interoperability. The interoperability questions were framed around determining what is important to the community in the context of open source license compliance and interoperability around Software Bill of Materials and/or automation. Respondents overwhelmingly expressed interest in greater interoperability for all tools and automation. This means supporting ingest and export of SPDX. It means greater interoperability between open source tooling as well as between open source and proprietary tooling.

Now we know what people want, it is time to make it happen.

You can expect the project as a whole to lean into supporting to diverse use-cases for OpenChain ISO 5230. You can expect the tooling group to lean into the interoperability question.

And…you are the community. Let’s get started!

Regards

Shane


Re: Presentation: Making compliance scalablein a container world

 

Jumping in here: Scott has been thinking about these challenges for year, so it is a super great opportunity to look at what he has done and ask questions :)

On May 15, 2021, at 2:06, Jennifer McGinnis <jmcginnis@...> wrote:

Hi OpenChain,

I wanted to pass this presentation along as a sort of FYI.

Hope everyone has a great weekend!

Jenni

--
Jenni McGinnis
Projects Coordinator | The Linux Foundation
Assisting with RISC-V International, OpenChain, TARS, & OpenFabrics Alliance


<Peterson_source_containers_LLW_2021.pdf>


Presentation: Making compliance scalablein a container world

Jennifer McGinnis <jmcginnis@...>
 

Hi OpenChain,

I wanted to pass this presentation along as a sort of FYI.

Hope everyone has a great weekend!

Jenni

--
Jenni McGinnis
Projects Coordinator | The Linux Foundation
Assisting with RISC-V International, OpenChain, TARS, & OpenFabrics Alliance


Announcing the OpenChain Telco Work Group mailing list + Recording of first meeting

 

The OpenChain Telco Work Group is off to a strong start. This includes a new mailing list for those interested. Sign up here:
https://lists.openchainproject.org/g/telco

Catch up: Telco Work Group Meeting #1– Recording:
https://www.openchainproject.org/news/2021/05/13/openchain-telco-work-group-meeting-1-2021-05-06-full-recording


OpenChain Education Interactive Webinar 2021-05-04 – Full Recording

 

One of the cool things we did recently was to host an Education Work Group Interactive Webinar, driving forward the last details for our forthcoming free online education course. Check it out:
https://www.openchainproject.org/news/2021/05/07/openchain-education-interactive-webinar-2021-05-04-full-recording


Re: Slack Login

 

Mary, checking in to make sure all is ok, and ready to assist if the link from Jari did not resolve your problem :)

BTW, thanks Jari!

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan

On May 13, 2021, at 0:16, Jari Koivisto <jari.p.koivisto@...> wrote:


Mary

I got this link earlier from Shane: https://join.slack.com/t/openchainproject/shared_invite/zt-7ayys8g2-dgijHIK_kyrhEWEknrD0cQ try if that works for you too. 

BR,

   Jari

---
Jari Koivisto
E-mail: jari.p.koivisto@...
Mobile: +41 78 7479791
Skype: jari.p.koivisto
LinkedIn: http://www.linkedin.com/in/jarikoivisto



On Wed, 12 May 2021 at 14:55, Mattran, Mary <mary.mattran@...> wrote:
I tried to join the slack workspace as indicated in the newsletter, but slack is telling me that I do not have an account with this email address for this space.  Can I please get added to the slack with this email address?  Thanks!


OpenChain ISO 5260 and SPDX explicitly enter the Scania supply chain via Scania Corporate Standard 4589 (STD 4589)

 

OpenChain ISO 5260 and SPDX explicitly enter the Scania supply chain via Scania Corporate Standard 4589 (STD 4589). Big thanks to Jonas and his team for their visionary work in this space. Naturally we are on standby to assist all suppliers with questions or who want community support: 


Re: Slack Login

Jari Koivisto
 

Mary

I got this link earlier from Shane: https://join.slack.com/t/openchainproject/shared_invite/zt-7ayys8g2-dgijHIK_kyrhEWEknrD0cQ try if that works for you too. 

BR,

   Jari

---
Jari Koivisto
E-mail: jari.p.koivisto@...
Mobile: +41 78 7479791
Skype: jari.p.koivisto
LinkedIn: http://www.linkedin.com/in/jarikoivisto



On Wed, 12 May 2021 at 14:55, Mattran, Mary <mary.mattran@...> wrote:
I tried to join the slack workspace as indicated in the newsletter, but slack is telling me that I do not have an account with this email address for this space.  Can I please get added to the slack with this email address?  Thanks!


Slack Login

Mattran, Mary
 

I tried to join the slack workspace as indicated in the newsletter, but slack is telling me that I do not have an account with this email address for this space.  Can I please get added to the slack with this email address?  Thanks!


Re: Latest OpenChain Newsletter now available

Jennifer McGinnis <jmcginnis@...>
 

Prasad,

Thank you for catching that. The link IS correct, yes, but the header info at the top was not.  It has been corrected.


Thanks!

Jenni



On Tue, May 11, 2021 at 12:52 PM Prasad Iyer (prasadiy) <prasadiy@...> wrote:

Thanks, Jennifer for sharing this.  

 

A quick question - Is this link pointing to the correct/latest newsletter? I see its pointing to Issue#47  whereas the link title  in your email shows Issue#48 as the latest.

 

Prasad Iyer

Director, Engineering - Product Operations

 

Email : prasadiy@...

Phone: +1 (408) 315-5101

DNS

 

 

 

 

From: <main@...> on behalf of Jennifer McGinnis <jmcginnis@...>
Reply-To: "main@..." <main@...>
Date: Tuesday, May 11, 2021 at 9:33 AM
To: "main@..." <main@...>
Subject: [openchain] Latest OpenChain Newsletter now available

 


Re: Latest OpenChain Newsletter now available

Prasad Iyer
 

Thanks, Jennifer for sharing this.  

 

A quick question - Is this link pointing to the correct/latest newsletter? I see its pointing to Issue#47  whereas the link title  in your email shows Issue#48 as the latest.

 

Prasad Iyer

Director, Engineering - Product Operations

 

Email : prasadiy@...

Phone: +1 (408) 315-5101

DNS

 

 

 

 

From: <main@...> on behalf of Jennifer McGinnis <jmcginnis@...>
Reply-To: "main@..." <main@...>
Date: Tuesday, May 11, 2021 at 9:33 AM
To: "main@..." <main@...>
Subject: [openchain] Latest OpenChain Newsletter now available

 


Latest OpenChain Newsletter now available

Jennifer McGinnis <jmcginnis@...>
 


Global work team call - tomorrow (Tuesday) at 06:00 UTC

 

Dear all

This is a reminder that our regular bi-weekly global work team call will take place tomorrow (Tuesday) at 06:00 UTC.

Regards

Shane

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan


Reminder: telco meeting in one hour - 7am Pacific / 2pm UTC / 10pm CST / 11pm KST+JST

 

Join us here:

https://us02web.zoom.us/j/9990120120?pwd=NzVCaFE2L1RRRFZaSkk0dm8xdlplUT09


Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan


OpenChain Web-App Under Coordinated Attack - Service Intermittent or Down - Data Safe - Assistance Welcomed

 

Dear all

We are under a coordinated automated attack against our self-certification web app. Over 57,000 false accounts were created in a matter of a few hours in an attempt to take down the system. Thanks to the quick thinking of Gary, the brunt of this attack has been mitigated. However, there are a few consequences:
(1) Access to the self-certification web app is disabled for non-registered users
(2) Our May quota of emails sent by the service for May has been used
(3) We are still digging into how to harden the service and ensure full return

If you can assist, that would be much appreciated. Gary is heading into vacation and will be offline until Mid-May. While we are calling in LF Technical to assist, a community member familiar with AWS would be of incredible use to us right now.

My apologies for the interruption. As Gary noted, the attack was planned out and beyond a typical “script kiddie” event. We have no idea why and we have yet to isolate and report the computer(s) involved. Once we do, they will be reported to law enforcement in the relevant jurisdiction.

Regards

Shane


Shane Coughlan
General Manager, OpenChain
e: scoughlan@...
p: +81 (0) 80 4035 8083
w: www.linuxfoundation.org

Schedule a call:
https://meetings.hubspot.com/scoughlan


Re: [education] Our next Bi-Weekly Webinar will be replaced by a special Education Work Team activity

 

Thanks Martin! Fantastic to have your contribution. Deeply appreciated.

Regards

Shane

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan

On Apr 29, 2021, at 1:27, Martin Yagi <martin.yagi@...> wrote:

Dear Shane, all,

I wont be able to join the call, so I thought I'd give some comments in the hope that they are useful.

It's not clear if the purpose of the training is for
a) people implementing a OSS compliance policy/process/programme (or educating higher management on the principles of why/how to do it).
b) participants of an OSS compliance programme.
c) both a and b

I would recommend at this stage aiming for having different training courses for (a) and (b). The good news is that chapters 1-3 work as an introduction for both. Whilst the remaining chapters include good content, I personally don't think they address either purpose well enough without some focussed re-work.

It may not even be possible to sufficiently address (b) in a generic enough fashion....my policy/process/terminology is different enough in details that I would need to have my own versions of the content anyway, or ask programme participants to do 2 courses (that's not going to happen!).

It may be that I'm an outlier in my thinking, but it may be worth poling to see who thinks they will roll out said course, if implemented as per current direction, to their organisation.

I'm happy to chat about this in more detail.

Best regards,

Martin Yagi
Intellectual Property Manager|


-----Original Message-----
From: education@... <education@...> On Behalf Of Shane Coughlan via lists.openchainproject.org
Sent: 28 April 2021 14:09
To: OpenChain Main <main@...>
Cc: OpenChain Education <education@...>
Subject: [education] Our next Bi-Weekly Webinar will be replaced by a special Education Work Team activity

Balakrishna, (CC), is going to walk the education team through a special review for our new LF Training online course. We need a little group work to push it over the line for release:
https://docs.google.com/document/d/1FA6GvYG7G-cQgSdAM610CjYQExwJW3xY/edit

The call takes place at 06:00 UTC 2021-05-04. Please do attend if you can spare some time to help us finish this critical piece of community infrastructure.
https://us02web.zoom.us/j/9990120120?pwd=NzVCaFE2L1RRRFZaSkk0dm8xdlplUT09

Regards

Shane




[https://firstlightfusion.com/assets/first-light-fusion-square-logo-footer.png]


First Light Fusion Ltd.
p: 01865 807 670
a: Unit 10, Oxford Industrial Park, Mead Road, Yarnton, Kidlington, Oxford, OX5 1QU



This email and any attachments are confidential. Find more legal information here<http://firstlightfusion.com/confidentiality/>.

[https://firstlightfusion.com/wp-content/uploads/2020/08/cyberessentials_certification-mark-plus_colour.png]





Re: First Public Meeting: OpenChain Telco Work Group Meeting - 2021-05-06 @ 07:00 Pacific / 14:00 UTC / 22:00 CST

 

Helio from BMW will be present ☺️

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan

On May 5, 2021, at 12:15, Shane Coughlan <scoughlan@...> wrote:

Hi Jimmy!

I’m working on having someone from automotive present at the meeting 🙂

Shane

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan

On May 4, 2021, at 5:35, Jimmy Ahlberg via lists.openchainproject.org <jimmy.ahlberg=ericsson.com@...> wrote:

Hi Shane, thanks for arranging. Being on leave I have been somewhat lax in reading and responding to email. But I will definitely participate and hope that we can get some good discussion going.

Two practicalities, 1. how will hosting work? Since I'm restricted to the web client of zoom Im somewhat limited in what I can do.

2. Would it be possible to (at very short notice I know) have someone with insight into the Automotive workgroup share their experiences with us during this call so that we can all get a better understanding of the success we are trying to recreate?

BR J

-----Original Message-----
From: main@... <main@...> On Behalf Of Shane Coughlan via lists.openchainproject.org
Sent: den 22 april 2021 13:04
To: OpenChain Main <main@...>
Subject: [openchain] First Public Meeting: OpenChain Telco Work Group Meeting - 2021-05-06 @ 07:00 Pacific / 14:00 UTC / 22:00 CST

Dear all

We will host the first public meeting of the OpenChain Telco Work Group on the 6th of May at 07:00 Pacific / 14:00 UTC / 22:00 CST. All interested parties from telecommunications and related fields are invited to attend. We will be discussing how ISO 5230 fits into this sphere, how it interrelated with other standards, and what information or specific support is necessary for the Telco sector. The meeting will be chaired by Jimmy Ahlberg from Ericsson.

Regards

Shane

= Dial in Details - Also in our Global Calendar =

Join Zoom Meeting

https://us02web.zoom.us/j/9990120120?pwd=NzVCaFE2L1RRRFZaSkk0dm8xdlplUT09

Meeting ID: 999 012 0120

Passcode: 123456

One tap mobile

+16699006833,,9990120120#,,,,*123456# US (San Jose)

+12532158782,,9990120120#,,,,*123456# US (Tacoma)

Dial by your location

+1 669 900 6833 US (San Jose)

+1 646 876 9923 US (New York)

Meeting ID: 999 012 0120

Passcode: 123456

Find your local number: https://us02web.zoom.us/u/kW7exlfu








861 - 880 of 4839