Welcome back everyone


Happy Western New Year!

Welcome back one and all. It looks like 2023 will be a very busy twelve months in our field. There are a few items worth keeping an eye on.

The first is the continued use of OpenChain ISO/IEC 5230:2020 in the global supply chain. As the international standard for open source license compliance, it sets the bar for what we expect from suppliers, and it provides a firm foundation for judging the quality of compliance programs.

The second is the transformation of OpenChain Security Assurance Specification 1.1 from a de facto industry standard into a formal ISO/IEC standard. We handed over the submission paperwork to Joint Development Foundation in Q4 2022, and as a PAS submitter they will lead the processes necessary for graduation circa mid-2023.

Finally, the OpenChain Project is positioning itself for the long-term future as well as current execution. Each month we are editing the next generation of both our license compliance and security standards in a completely open process. Dial in, share ideas, and make an impact on the supply chain. It is highly recommended that you join our monthly calls and our specification mailing list to track this process.

I am looking forward to the year ahead. We are building a more efficient and effective supply chain by helping companies of all sizes, in all markets and across all geographies use open source more effectively. This is a long-term activity that reduces the cost and increases the speed of innovation for everyone. With rising economic challenges, this is more important than ever.

Want to ensure you can easily attend all our meetings (including work groups or special interest groups)?

Add our global calendar to your Google Calendar or compatible system:

Add our global calendar as an iCal file:


Shane Coughlan
OpenChain General Manager

e: scoughlan@...
p: +81 (0) 80 4035 8083
w: www.linuxfoundation.org

Schedule a call: