OpenChain Work Groups – New and Improved Structure
The OpenChain Project has been very active since its formal launch in late 2016. Our global community has built an ISO/IEC standard for license compliance, launched a de facto (and soon to be ISO/IEC) standard for security. We have contributed to SBOM, OSPO, training, policy and other discussions. We built the world’s largest library of open source management reference material.
To reflect our growth and to make it easier to navigate the project we are going to make some adjustments to our work groups. Nothing too radical, but definitely something to help people find their way around more quickly, and to get the information they want faster. The image above contains a summary of the evolution approved by our Governing Board at their last meeting in September, and targeted for release during October 2022.
• The Specification Work Group will split into two parts – a Licensing Work Group for ISO/IEC 5230 and a Security Work Group for the Security Assurance Specification.
• The Education Work Group and Outreach Work Group will combine into the Education Work Group.
• We will launch a new Export Control Work Group and a new Policy Work Group. The former will help to navigate issues around increasing international trade tensions. The later will help us provide strategic advice around the highest level of planning for open source in legislation and business.
• The dormant Conformance Work Group will be wound down and discussions regarding self-certification moved to Education Work Group, with discussions about the nuance of conformance parameters moved to our Steering Committee.
• Finally (if there are no objections), we will re-brand the Reference Tooling Work Group to the Automation Work Group to help guide people hearing about automation to the right solutions.
Your feedback – as always – is most welcome. Please provide comments to our main mailing list:
(or just reply all to this email)
Please provide feedback by Close of Business UTC (17:00 UTC) on the 18th of October 2022.
Ana Jimenez Santamaria
toggle quoted messageShow quoted text
This new structure looks great, and it makes more clear the different areas to engage across the OpenChain Project.
I was wondering, where would the OpenChain content about OSPOs in the policy/legal context (e.g the latest playbook to adopt ISO standards under the lens of a virtual OSPO) would fit given this new structure?
Could be under the Policy section? I see you described as "providing strategic advice around the highest level of planning for open source in legislation and business".
If there is a specific place to focus on legal /security policies under the OSPO scope in the OpenChain, it will be easier for me to share it with TODO Group's OSPO practitioners 🙂
On Wed, Oct 12, 2022 at 3:59 PM Shane Coughlan <scoughlan@...> wrote:
Ana Jiménez Santamaría
Senior Project Manager at TODO Group (#OSPO)
💬 Languages: English, Español, 日本語
🙋 Pronouns: she/her
🕐 Timezone: CET / CEST