Containers and Open Source License Compliance

Logo
Presented by

Kate Downing, Law Offices of Kate Downing | Zach LaVallee, FOSSA | Megh Suthar, FOSSA

About this talk

A recent Cloud Native Computing Foundation (CNCF) survey revealed that a staggering 84% of organizations use containers in production — up from only 23% a few years ago. Like much of today’s technological landscape, the container ecosystem is largely fueled by open source components. This, of course, means organizations that use containers must be mindful of open source licensing requirements. But the complexity and relative novelty of the container environment means maintaining license compliance can be easier said than done. Join leading open source licensing expert Kate Downing and FOSSA’s engineering team on Dec. 19 for key insights on understanding and managing open source license compliance in the container environment. We’ll discuss: -Which parts of the open source container ecosystem carry compliance obligations -How to deal with copyleft-licensed components -End-to-end strategies for managing container-related compliance -The role of container scanning in managing compliance
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (53)
Subscribers (6492)
Up to 90% of any piece of software is from open source, creating countless dependencies and areas of risk to manage. FOSSA is the most reliable automated policy engine for vulnerability management, license compliance, and code quality across the open source stack. With FOSSA, engineering, security, and legal teams all get complete and continuous risk mitigation for the entire software supply chain, integrated into each of their existing workflows.