Date   

IMPORTANT: OpenChain Security Summit 2022 – 17/18th February

 

Earlier today you should have received calendar invitations (via this list) for our forthcoming OpenChain Security Summit 2022. This event (as always) is free to attend. It will be a pivotal event in showing where the industry is positioned and where OpenChain in this space. I highly recommend that you and your security teams attend. Sharing link:

OpenChain Security Summit 2022 – 17/18th February


Learn About OpenSSF In The Current Landscape From Brian Behlendorf, General Manager Open Source Security Foundation
OpenSSF is committed to collaboration and working both upstream and with existing communities to advance open source security for all.
Learn About SPDX In The Current Landscape From Kate Stewart, VP, Dependable Embedded Systems At The Linux Foundation
SPDX is an open standard for communicating software bill of material information, including provenance, license, security, and other related information.
And Learn More About Industry Responses To Log4J With Practical Cases Studies From User And Vendor Companies
The Security Summit will take place on February 17th 2022 at 17:00 PST / February 18th 2022 02:00 UTC / 09:00 CST / 10:00 JST. It will be hosted on Zoom and it will be free to attend. It will also be recorded. Join the event here:
You can expect to come away with a clear understanding of market conditions, how the Linux Foundation is addressing them, and where OpenChain fits into the picture. The goal – as always – is to ensure you have the information necessary to make informed, effective decisions around the open source supply chain.
We seek to build trust in the quality of programs used by you, your customers and your suppliers. We are proud to have taken significant strides in our field throughout 2021. We expect to push the boundaries of what is possible once again in 2022. You can learn more about what we are doing around security – including our reference assurance guide – here:


[telco] Upload of our "charter document"

 

Interested in telco stuff? Check out the framing document Jimmy (chair) has prepared for the work group. You are welcome to take a look.

Regards

Shane

Begin forwarded message:

Subject: [telco] Upload of our "charter document"
Date: February 8, 2022 0:49:27 JST
Reply-To: telco@...

Dear Telco list. 

Find here my first attempts to document our “charter” of the Standard SBOM effort. I hope everyone can read and edit the document. If not let me or Shane know and we will address that so that everyone has the access they need. 

Hopefully we can get some good progress on this document until our next meeting, its by no means an exhaustive or definitive document so feel free to add things to it. If you feel that there are unclarities in the document feel free to shout out either to me or even better use the email list so that we can all engage in the conversation.

https://drive.google.com/drive/folders/1-4-DQd27jyWN6kCfVKCm_wFbGuVw4g77

BR 
 
 
 
Jimmy Ahlberg LL.M
Director Open Source Policy
 
Group Function Technology Standards & Industry Initiatives
 
Phone: +46107198055
Mobile: +46725838055
 
Ericsson
Lindholmspiren 11
417 56, Göteborg
Sweden
 
 
Our commitment to Technology for Good and Diversity and Inclusion contributes to positive change.
Follow us on: Facebook LinkedIn Twitter

Legal entity:
ERICSSON AB registration number 556056-6258, registered office in Stockholm.
This communication is confidential. Our email terms: www.ericsson.com/en/legal/privacy/email-disclaimer
 


Invitation: OpenChain Security Summit 2022 @ Fri Feb 18, 2022 11:00 - 13:00 (JST) (main@lists.openchainproject.org)

 

You have been invited to the following event.

OpenChain Security Summit 2022

When
Fri Feb 18, 2022 11:00 – 13:00 Japan Standard Time
Where
https://zoom.us/j/4377592799 (map)
Calendar
main@...
Who
scoughlan@... - creator
OpenChain Japan
OpenChain Main
OpenChain Telco Work Group
OpenChain Education
OpenChain Germany
OpenChain India
OpenChain Partners
OpenChain UK
OpenChain Automotive
OpenChain Korea
OpenChain Taiwan
OpenChain Tooling
OpenChain Specification
bbehlendorf@...
Kate Stewart
dwheeler@...
Learn About OpenSSF In The Current Landscape From Brian Behlendorf, General Manager Open Source Security Foundation

OpenSSF is committed to collaboration and working both upstream and with existing communities to advance open source security for all.

Learn About SPDX In The Current Landscape From Kate Stewart, VP, Dependable Embedded Systems At The Linux Foundation

SPDX is an open standard for communicating software bill of material information, including provenance, license, security, and other related information.

And Learn More About Industry Responses To Log4J With Practical Cases Studies From User And Vendor Companies

The Security Summit will take place on February 17th 2022 at 17:00 PST / February 18th 2022 02:00 UTC / 09:00 CST / 10:00 JST. It will be hosted on Zoom and it will be free to attend. It will also be recorded. Join the event here:

https://zoom.us/j/4377592799


You can expect to come away with a clear understanding of market conditions, how the Linux Foundation is addressing them, and where OpenChain fits into the picture.

The goal – as always – is to ensure you have the information necessary to make informed, effective decisions around the open source supply chain. We seek to build trust in the quality of programs used by you, your customers and your suppliers. 


We are proud to have taken significant strides in our field throughout 2021. We expect to push the boundaries of what is possible once again in 2022.

You can learn more about what we are doing around security – including our reference assurance guide – here:

https://www.openchainproject.org/news/2022/01/19/openchain-on-security

~==========================~
You have been invited to a Zoom meeting:

https://zoom.us/j/4377592799

Meeting ID: 4377592799

One tap mobile:
+18773690926,,4377592799# US
+18558801246,,4377592799# US
+14388097799,,4377592799# Canada
+15873281099,,4377592799# Canada
+16473744685,,4377592799# Canada
+16475580588,,4377592799# Canada
+17789072071,,4377592799# Canada
+12042727920,,4377592799# Canada
+18557038985,,4377592799# Canada
+13126266799,,4377592799# US (Chicago)
+13462487799,,4377592799# US (Houston)
+16465588656,,4377592799# US (New York)
+16699006833,,4377592799# US (San Jose)
+12532158782,,4377592799# US (Tacoma)
+13017158592,,4377592799# US (Washington DC)

Dial by your location:
+1 8773690926 US
+1 8558801246 US
+1 4388097799 Canada
+1 5873281099 Canada
+1 6473744685 Canada
+1 6475580588 Canada
+1 7789072071 Canada
+1 2042727920 Canada
+1 8557038985 Canada
+1 3126266799 US (Chicago)
+1 3462487799 US (Houston)
+1 6465588656 US (New York)
+1 6699006833 US (San Jose)
+1 2532158782 US (Tacoma)
+1 3017158592 US (Washington DC)
Find your local number: https://zoom.us/zoomconference
~==========================~

Going (main@...)?   Yes - Maybe - No    more options »

Invitation from Google Calendar

You are receiving this courtesy email at the account main@... because you are an attendee of this event.

To stop receiving future updates for this event, decline this event. Alternatively you can sign up for a Google account at https://calendar.google.com/calendar/ and control your notification settings for your entire calendar.

Forwarding this invitation could allow any recipient to send a response to the organizer and be added to the guest list, or invite others regardless of their own invitation status, or to modify your RSVP. Learn More.


NEC Joins The Governing Board Of The OpenChain Project

 

NEC Joins The Governing Board Of The OpenChain Project

“NEC is well aware of the importance of security and compliance in the open source supply chain and we respect OpenChain’s leadership in this field.” said Kimio Suganuma, Head of the OSS Promotion Center and Emerging SI Technology Development Division, Digital Business Platform Unit, NEC. “We have decided to join as a platinum member to show our approval and support of the open source ecosystem.”
https://www.openchainproject.org/featured/2022/02/09/nec-joins-governing-board


Re: Webinar #36 – Netfilter and Patrick McHardy Settlement

박정숙
 

Shane,
Thank you for sharing it. Very interesting!

Have a nice day!

My best,
Jeongsook.

박정숙 Jeongsook Park
오픈소스센터 / 담당
34129 대전시 유성구 가정로 218
Tel 042-860-5468 Mobile 010-8849-6513 
Email  jungsp@...

-----Original Message-----
From: "Pascal Oberndörfer" <pascal.oberndoerfer@...>
To: "main@..." <main@...>;
Cc:
Sent: 2022-02-08 (화) 22:36:14 (UTC+09:00)
Subject: Re: [openchain] Webinar #36 – Netfilter and Patrick McHardy Settlement

Shane,

Many thanks for sharing the recording! Highly appreciated as I, sadly, missed the live event.

Best regards,
Pascal

-----Ursprüngliche Nachricht-----
Von: main@...
[mailto:main@...] Im Auftrag von Shane Coughlan via
lists.openchainproject.org
Gesendet: Dienstag, 8. Februar 2022 13:25
An: OpenChain Main <main@...>
Betreff: [openchain] Webinar #36 – Netfilter and Patrick McHardy
Settlement

Check out the full recording of Dr. Till Jaeger’s excellent webinar here:
https://www.openchainproject.org/featured/2022/02/08/webinar-36

Want to catch up on all our webinars? Check here:
https://www.openchainproject.org/webinars



________________________________

Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.

The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it.

Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição


Re: Webinar #36 – Netfilter and Patrick McHardy Settlement

Pascal Oberndörfer
 

Shane,

Many thanks for sharing the recording! Highly appreciated as I, sadly, missed the live event.

Best regards,
Pascal

-----Ursprüngliche Nachricht-----
Von: main@...
[mailto:main@...] Im Auftrag von Shane Coughlan via
lists.openchainproject.org
Gesendet: Dienstag, 8. Februar 2022 13:25
An: OpenChain Main <main@...>
Betreff: [openchain] Webinar #36 – Netfilter and Patrick McHardy
Settlement

Check out the full recording of Dr. Till Jaeger’s excellent webinar here:
https://www.openchainproject.org/featured/2022/02/08/webinar-36

Want to catch up on all our webinars? Check here:
https://www.openchainproject.org/webinars



________________________________

Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.

The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it.

Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição


Webinar #36 – Netfilter and Patrick McHardy Settlement

 

Check out the full recording of Dr. Till Jaeger’s excellent webinar here:
https://www.openchainproject.org/featured/2022/02/08/webinar-36

Want to catch up on all our webinars? Check here:
https://www.openchainproject.org/webinars


Important meeting 10:30 UTC (one hour from now) LFC194 online course preparation

 

Balakrisha will chair a meeting to discuss how the second OpenChain / LF Training course with official certification will finalize. We have a lot done (especially Balakrisha!), so it looks like we have a clear and relatively easy shot towards tweaking and finishing this month.

This is important because we will hold an IPR summit in middle March. If we close the outstanding issues, our course can launch there. It’s not vital but it would be super cool 🙂

I want to stress that this builds on something exceptional. Our previous course - LFC193 - has been scoring exceptionally well in LF Training surveys: 4.68/5. According to Flavia at LF Training: Learners mentioned that they loved that the course is very straightforward, the explanations are clear, simple and easy to understand, exceeding expectations.

You hit it out of the ballpark. Let’s do it again.

Dial in here 10:30 UTC / 11:30 CET:

Regards

Shane 

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:
https://meetings.hubspot.com/scoughlan


Netfilter and McHardy. The settlement. The meaning. - Webinar in 30 minutes

 

Netfilter and McHardy. The settlement. The meaning. A description of the case by Dr. Till Jaeger of JBB, lawyer for Netfilter. Exclusive free OpenChain Webinar today at 14:00 UTC (15:00 CET / 19:30 IST / 22:00 CST). Join without registration here:
https://zoom.us/j/4377592799

(Basically… we start in 30 minutes)

On Feb 6, 2022, at 19:17, Shane Coughlan <scoughlan@...> wrote:

The OpenChain Bi-Weekly Webinar is quite special this time around. We have Dr. Till Jaeger of the law firm JBB joining us to talk through the recent settlement between the Netfilter Project and Patrick McHardy, a notorious "copyright troll.” If you work includes any aspect of legal activity around open source this is a must-see.

Join us:
https://zoom.us/j/4377592799

Timezone:
Monday 7th February @ 06:00 PST / 14:00 UTC / 14:00 BST / 15:00 CET / 19:30 IST / 22:00 CST / 23:00 KST + JST

== What is this about? ==

Patrick McHardy, a previous contributor to the Netfilter Project, is estimated to have received settlements from more than 80 companies leveraging cease and desist letter. He is the first “copyright troll” to have emerged in the Linux ecosystem. The Netfilter Project have addressed his actions in a court of law by preventing this individual sending cease and desist letters without a majority vote of active core team members. These terms also apply to previous cease and desist letters.

== What did the project say? ==

Pablo Neira Ayuso <pablo@...>:
"The netfilter project announces a settlement with Patrick McHardy. This settlement is legally binding and it governs any legal enforcement
activities concerning all programs and program libraries published by the netfilter/iptables project on its website [1] as well as the Linux kernel [2]. Please, see the court order [3] (in German) and/or the translation of the court order for further details [4].”
https://lore.kernel.org/netdev/Ye6jCQm7z0Yr3bqA@salvia/

[1] https://www.netfilter.org
[2] https://www.kernel.org
[3] https://www.netfilter.org/files/2022-01-24-Beschluss_und_Vergleich.pdf
[4] https://www.netfilter.org/files/2022-01-24-Translation_Court_Order_and_Settlement.pdf


OSS License Obligations & Compatibility Database By Shuvajit

 

Shuvajit shared a document showing license compatibility (a reference guide). It may be of interest to parties on this list.

Shuvajit had shared it to several lists, but it bounced from a few, and I want to make sure this passes before your eyes. :)

== Forwarded from the India Work Group List ==

Dear Shane, OpenChain Community members

I write wishing all a healthy and safe beginning of 2022!!

I watched the presentation by Carlo which shone some bright lights on GPL enforcement trends and as usual Carlo's insightful observations will be helpful in this case (interim and in future).
I also noticed that Carlo (& maybe others) was looking for a database on OSS license obligations.

I would like to share and contribute the attached database to this fantastic community. This is an old (> 7 years) document I had prepared, which I had to dig through to get hold of it.

This is an incomplete document (Carlo mentions it is okay 🙂), with some licenses which might have got deprecated, and may have other "gotchas". Around 30 licenses are covered in the document and each license name in the "Compatibility Matrix" sheet is hyperlinked to the license in "License Terms & Conditions" sheet.

I also acknowledge that there is a lot of room for improvement(s) in this document, and I will be happy to stand corrected on any & all aspects in the document. All thoughts are welcome as is the norm of this community.

However, I thought it may be a good base to begin with, and I hope it will prove of some reasonable value to all of us in this esteemed community.

Thanks to Shane for arranging the webinar.

Shuvajit
Bangalore
Capgemini Engineering


Re: OSS License Obligations & Compatibility Database

Carlo Piana
 

Yes, we're currently evaluating some kind of reuse of it. It's a very accurate and valuable set of information.

Cheers

Carlo



From: Sebastian Schuberth <sschuberth@...>
Sent: Sunday, February 6, 2022 18:51
To: main@...
Cc: Carlo Piana; Alberto Pianon (Array); Rahul Mohan G.
Subject: Re: [openchain] OSS License Obligations & Compatibility Database

On a similar note, the OSADL license compliance matrix has recently
been updated with a JSON representation (next to CSV), see

https://github.com/priv-kweihmann/osadl-matrix

--
Sebastian Schuberth

On Sun, Feb 6, 2022 at 4:22 PM vaishali avhad via
lists.openchainproject.org
<vaishali_avhad=yahoo.com@...> wrote:
>
> Hi Shuvajit,
>
> thanks for the email and the excel sheet. I will take a look at them tomorrow.
> Incidentally, I am working with Carlo for preparing license obligations.
> If I need any other help, I will certainly contact you again.
>
>
> Best,
> -Vaishali
>
>
> On Sunday, February 6, 2022, 07:16:57 PM GMT+5:30, Shuvo <shuva0904@...> wrote:
>
>
> [Perhaps a repeat for India WG, sharing in this recipient list]
>
> Dear Shane, OpenChain members
>
> I write wishing all a healthy and safe beginning of 2022!!
>
> I watched the presentation by Carlo which shone some bright lights on GPL enforcement trends and as usual Carlo's insightful observations will be helpful in this case (interim and in future).
> I also noticed that Carlo (& maybe others) was looking for a database on OSS license obligations.
>
> I would like to share and contribute the attached database to this fantastic community. This is an old (> 7 years) document I had prepared.
>
> This is an incomplete document (Carlo mentions it is okay 🙂), with some licenses which might have got deprecated, and may have other "gotchas". Around 30 licenses are covered in the document and each license name in the "Compatibility Matrix" sheet is hyperlinked to the license in "License Terms & Conditions" sheet.
>
> I also acknowledge that there is a lot of room for improvement(s) in this document, and I will be happy to stand corrected on any & all aspects in the document. All thoughts are welcome as is the norm of this community.
>
> However, I thought it may be a good base to begin with, and I hope it will prove of some reasonable value to all of us in this community.
>
> Thanks to Shane for arranging the webinar.
>
> Shuvajit
> Bangalore
> Capgemini Engineering (f/k/a ALTRAN)
>
>
> --
> Shuvajit Mitra


Re: OSS License Obligations & Compatibility Database

Sebastian Schuberth
 

On a similar note, the OSADL license compliance matrix has recently
been updated with a JSON representation (next to CSV), see

https://github.com/priv-kweihmann/osadl-matrix

--
Sebastian Schuberth

On Sun, Feb 6, 2022 at 4:22 PM vaishali avhad via
lists.openchainproject.org
<vaishali_avhad=yahoo.com@...> wrote:


Hi Shuvajit,

thanks for the email and the excel sheet. I will take a look at them tomorrow.
Incidentally, I am working with Carlo for preparing license obligations.
If I need any other help, I will certainly contact you again.


Best,
-Vaishali


On Sunday, February 6, 2022, 07:16:57 PM GMT+5:30, Shuvo <shuva0904@...> wrote:


[Perhaps a repeat for India WG, sharing in this recipient list]

Dear Shane, OpenChain members

I write wishing all a healthy and safe beginning of 2022!!

I watched the presentation by Carlo which shone some bright lights on GPL enforcement trends and as usual Carlo's insightful observations will be helpful in this case (interim and in future).
I also noticed that Carlo (& maybe others) was looking for a database on OSS license obligations.

I would like to share and contribute the attached database to this fantastic community. This is an old (> 7 years) document I had prepared.

This is an incomplete document (Carlo mentions it is okay 🙂), with some licenses which might have got deprecated, and may have other "gotchas". Around 30 licenses are covered in the document and each license name in the "Compatibility Matrix" sheet is hyperlinked to the license in "License Terms & Conditions" sheet.

I also acknowledge that there is a lot of room for improvement(s) in this document, and I will be happy to stand corrected on any & all aspects in the document. All thoughts are welcome as is the norm of this community.

However, I thought it may be a good base to begin with, and I hope it will prove of some reasonable value to all of us in this community.

Thanks to Shane for arranging the webinar.

Shuvajit
Bangalore
Capgemini Engineering (f/k/a ALTRAN)


--
Shuvajit Mitra


Re: OSS License Obligations & Compatibility Database

Carlo Piana
 

Indeed, thanks a lot.

Carlo


From: vaishali avhad <vaishali_avhad@...>
Sent: Sunday, February 6, 2022 16:22
To: main@...
Cc: Carlo Piana; Alberto Pianon (Array); Rahul Mohan G.
Subject: Re: [openchain] OSS License Obligations & Compatibility Database

Hi Shuvajit, 

thanks for the email and the excel sheet. I will take a look at them tomorrow.
Incidentally, I am working with Carlo for preparing license obligations. 
If I need any other help, I will certainly contact you again. 


Best,
-Vaishali


On Sunday, February 6, 2022, 07:16:57 PM GMT+5:30, Shuvo <shuva0904@...> wrote:


[Perhaps a repeat for India WG, sharing in this recipient list]

Dear Shane, OpenChain members

I write wishing all a healthy and safe beginning of 2022!!

I watched the presentation by Carlo which shone some bright lights on GPL enforcement trends and as usual Carlo's insightful observations will be helpful in this case (interim and in future). 
I also noticed that Carlo (& maybe others) was looking for a database on OSS license obligations.

I would like to share and contribute the attached database to this fantastic community. This is an old (> 7 years) document I had prepared.

This is an incomplete document (Carlo mentions it is okay 🙂), with some licenses which might have got deprecated, and may have other "gotchas". Around 30 licenses are covered in the document and each license name in the "Compatibility Matrix" sheet is hyperlinked to the license in "License Terms & Conditions" sheet.

I also acknowledge that there is a lot of room for improvement(s) in this document, and I will be happy to stand corrected on any & all aspects in the document. All thoughts are welcome as is the norm of this community.

However, I thought it may be a good base to begin with, and I hope it will prove of some reasonable value to all of us in this community. 

Thanks to Shane for arranging the webinar.

Shuvajit
Bangalore
Capgemini Engineering (f/k/a ALTRAN)


--
Shuvajit Mitra


Re: OSS License Obligations & Compatibility Database

vaishali avhad
 

Hi Shuvajit, 

thanks for the email and the excel sheet. I will take a look at them tomorrow.
Incidentally, I am working with Carlo for preparing license obligations. 
If I need any other help, I will certainly contact you again. 


Best,
-Vaishali


On Sunday, February 6, 2022, 07:16:57 PM GMT+5:30, Shuvo <shuva0904@...> wrote:


[Perhaps a repeat for India WG, sharing in this recipient list]

Dear Shane, OpenChain members

I write wishing all a healthy and safe beginning of 2022!!

I watched the presentation by Carlo which shone some bright lights on GPL enforcement trends and as usual Carlo's insightful observations will be helpful in this case (interim and in future). 
I also noticed that Carlo (& maybe others) was looking for a database on OSS license obligations.

I would like to share and contribute the attached database to this fantastic community. This is an old (> 7 years) document I had prepared.

This is an incomplete document (Carlo mentions it is okay 🙂), with some licenses which might have got deprecated, and may have other "gotchas". Around 30 licenses are covered in the document and each license name in the "Compatibility Matrix" sheet is hyperlinked to the license in "License Terms & Conditions" sheet.

I also acknowledge that there is a lot of room for improvement(s) in this document, and I will be happy to stand corrected on any & all aspects in the document. All thoughts are welcome as is the norm of this community.

However, I thought it may be a good base to begin with, and I hope it will prove of some reasonable value to all of us in this community. 

Thanks to Shane for arranging the webinar.

Shuvajit
Bangalore
Capgemini Engineering (f/k/a ALTRAN)


--
Shuvajit Mitra


OSS License Obligations & Compatibility Database

Shuvo
 

[Perhaps a repeat for India WG, sharing in this recipient list]

Dear Shane, OpenChain members

I write wishing all a healthy and safe beginning of 2022!!

I watched the presentation by Carlo which shone some bright lights on GPL enforcement trends and as usual Carlo's insightful observations will be helpful in this case (interim and in future). 
I also noticed that Carlo (& maybe others) was looking for a database on OSS license obligations.

I would like to share and contribute the attached database to this fantastic community. This is an old (> 7 years) document I had prepared.

This is an incomplete document (Carlo mentions it is okay 🙂), with some licenses which might have got deprecated, and may have other "gotchas". Around 30 licenses are covered in the document and each license name in the "Compatibility Matrix" sheet is hyperlinked to the license in "License Terms & Conditions" sheet.

I also acknowledge that there is a lot of room for improvement(s) in this document, and I will be happy to stand corrected on any & all aspects in the document. All thoughts are welcome as is the norm of this community.

However, I thought it may be a good base to begin with, and I hope it will prove of some reasonable value to all of us in this community. 

Thanks to Shane for arranging the webinar.

Shuvajit
Bangalore
Capgemini Engineering (f/k/a ALTRAN)


--
Shuvajit Mitra


Netfilter Core Team Settlement Lawsuit with McHardy - Webinar Monday 7th February @ 06:00 PST / 14:00 UTC / 14:00 BST / 15:00 CET / 19:30 IST / 22:00 CST / 23:00 KST + JST

 

The OpenChain Bi-Weekly Webinar is quite special this time around. We have Dr. Till Jaeger of the law firm JBB joining us to talk through the recent settlement between the Netfilter Project and Patrick McHardy, a notorious "copyright troll.” If you work includes any aspect of legal activity around open source this is a must-see.

Join us:
https://zoom.us/j/4377592799

Timezone:
Monday 7th February @ 06:00 PST / 14:00 UTC / 14:00 BST / 15:00 CET / 19:30 IST / 22:00 CST / 23:00 KST + JST

== What is this about? ==

Patrick McHardy, a previous contributor to the Netfilter Project, is estimated to have received settlements from more than 80 companies leveraging cease and desist letter. He is the first “copyright troll” to have emerged in the Linux ecosystem. The Netfilter Project have addressed his actions in a court of law by preventing this individual sending cease and desist letters without a majority vote of active core team members. These terms also apply to previous cease and desist letters.

== What did the project say? ==

Pablo Neira Ayuso <pablo@...>:
"The netfilter project announces a settlement with Patrick McHardy. This settlement is legally binding and it governs any legal enforcement
activities concerning all programs and program libraries published by the netfilter/iptables project on its website [1] as well as the Linux kernel [2]. Please, see the court order [3] (in German) and/or the translation of the court order for further details [4].”
https://lore.kernel.org/netdev/Ye6jCQm7z0Yr3bqA@salvia/

[1] https://www.netfilter.org
[2] https://www.kernel.org
[3] https://www.netfilter.org/files/2022-01-24-Beschluss_und_Vergleich.pdf
[4] https://www.netfilter.org/files/2022-01-24-Translation_Court_Order_and_Settlement.pdf


Re: [india-wg] OpenChain Webinar: First order issued by a Judge in Italy enforcing the GPLv3 - 06:00 UTC / 07:00 CET / 08:00 BST / 14:00 CST / 15:00 KST+JST 2022-01-25 (22:00 PST previous day 2022-01-24)

Shuvo
 

Dear Shane, OpenChain Community members

I write wishing all a healthy and safe beginning of 2022!!

I watched the presentation by Carlo which shone some bright lights on GPL enforcement trends and as usual Carlo's insightful observations will be helpful in this case (interim and in future). 
I also noticed that Carlo (& maybe others) was looking for a database on OSS license obligations.

I would like to share and contribute the attached database to this fantastic community. This is an old (> 7 years) document I had prepared, which I had to dig through to get hold of it.

This is an incomplete document (Carlo mentions it is okay 🙂), with some licenses which might have got deprecated, and may have other "gotchas". Around 30 licenses are covered in the document and each license name in the "Compatibility Matrix" sheet is hyperlinked to the license in "License Terms & Conditions" sheet.

I also acknowledge that there is a lot of room for improvement(s) in this document, and I will be happy to stand corrected on any & all aspects in the document. All thoughts are welcome as is the norm of this community.

However, I thought it may be a good base to begin with, and I hope it will prove of some reasonable value to all of us in this esteemed community. 

Thanks to Shane for arranging the webinar.

Shuvajit
Bangalore
Capgemini Engineering

On Mon, Jan 24, 2022 at 11:03 AM Shane Coughlan <scoughlan@...> wrote:
Dear all

Our first regular webinar of 2022 takes place in around 24 hours (06:00 UTC 2022-01-25). This will be an important overview of the first order issued by a Judge in Italy enforcing the GPLv3. More specifically, it was based on a termination notification using Section 8 of the GPLv3.

The webinar will be hosted by Carlo Piana and Alberto Pianon of Array Law, the two lawyers behind the successful case.

Clearly one to watch 🙂

It takes place in our usual room without registration:

Check your time:
 06:00 UTC / 07:00 CET / 08:00 BST / 14:00 CST / 15:00 KST+JST 2022-01-25 (22:00 PST previous day 2022-01-24)

Shane Coughlan
OpenChain General Manager
+818040358083
Book a meeting:



--
Shuvajit Mitra


OpenChain Telco Meetings 2022-02-03

 

We held our most recent Telecommunications Work Group meetings on Thursday the 3rd of February. One takes place morning CET and one takes place afternoon CET. The telco work group meetings take place on the 1st Thursday of each month. You will find them listed in our global calendar:
https://www.openchainproject.org/community

You will find the recordings and slides from the most recent meetings here:
https://www.openchainproject.org/news/2022/02/04/telco-wg-2022-02-03

Everyone is invited to take part in future events. Here is an overview of what you can expect from Jimmy Ahlberg (Ericsson), Chair of the Work Group:

As a short update to all of you, I have taken the action point to put together a short Charter/work item tracker document for us. It also serves as an informal MoM from yesterdays meeting summarizing the discussions we had and where we currently stand on some of the issues. As soon as I figure out where we should upload that I will do so and invite you all to participate in editing the document. We have some clear actions from yesterday’s meetings that I hope we can work together on in the coming weeks until our next meeting. 

On the very top of that list is to look at SPDX and its different “modules” to determine what level of granularity is needed in the telco environment. As was also pointed out in the meetings we need to grow our community to include more members from the CSP side. I think that once we have our charter uploaded that becomes easier as it helps us explain what we are about. Getting the requirements from all parts of the supply chain as well as understanding the capabilities to deliver to those requirements is clearly key for success here.

You can join the telco mailing list here:
https://lists.openchainproject.org/g/telco


Invitation: LFC194 online course preparation @ Tue Feb 8, 2022 19:30 - 20:30 (JST) (main@lists.openchainproject.org)

 

You have been invited to the following event.

LFC194 online course preparation

When
Tue Feb 8, 2022 19:30 – 20:30 Japan Standard Time
Where
https://zoom.us/j/4377592799 (map)
Calendar
main@...
Who
scoughlan@... - creator
OpenChain Education
OpenChain Main
Hello All,

Welcome back, first of all we have a good news. Our LF training design point of contact gave us following information "I wanted to let you know that the first OpenChain course *LFC193* is getting very good reviews from learners: 4.68/5. Learners mentioned that they loved that the course is very straightforward, the explanations are clear, simple and easy to understand, exceeding expectations."

Now it's time for us to come back together, join hands and develop and review the second part of the course as we previously discussed. This time LFC194 will have the remaining chapters with a brief recap of highlights from the previous course.

We have a wishful release date of the course to be on 17th March 2022 during OpenChain IPR event. for which we have to handover the reviewed course document to the design team by 17th of Feb 2022. Let's try our best for the same :)

LFC194 Course document - https://onedrive.live.com/view.aspx?resid=674AE6F2A656C9C5!2229&cid=272215E9-E501-483B-84D8-73768D78DEC2&ithint=file%2cdocx&wdLOR=c0BDE0B94-C90A-44BB-8E64-4CFD5104EE51&authkey=!ANA7cxBJ_cnWD3w

LFC194 course design document - https://docs.google.com/document/d/1rA5VkMMVpR3GZ8kEj2fN6Bgt-smo3aYMqx-LHI6Y2uA/edit

Zoom call -

https://zoom.us/j/4377592799 ( https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fzoom.us%2Fj%2F4377592799&data=04%7C01%7Cbalakrishna.mukundraj%40in.bosch.com%7C459f29d0de1647c2c61d08d9a80c6a80%7C0ae51e1907c84e4bbb6d648ee58410f4%7C0%7C0%7C637725593966075762%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=MbgMWdnRi4BVAFS1tyYMI8HuVKCXPyOtdwod7ETjYL0%3D&reserved=0 )

Thank you.

Regards,
Balakrishna Mukundaraj

Going (main@...)?   Yes - Maybe - No    more options »

Invitation from Google Calendar

You are receiving this courtesy email at the account main@... because you are an attendee of this event.

To stop receiving future updates for this event, decline this event. Alternatively you can sign up for a Google account at https://calendar.google.com/calendar/ and control your notification settings for your entire calendar.

Forwarding this invitation could allow any recipient to send a response to the organizer and be added to the guest list, or invite others regardless of their own invitation status, or to modify your RSVP. Learn More.


Tooling Work Group Meeting #44 2022-02-02

 

Check out the first meeting of one of the most active groups in the world: tooling :) This is where you want to be to learn about how user companies are addressing automation around open source.
https://www.openchainproject.org/news/2022/02/04/tooling-wg-44

361 - 380 of 4814