This collection of resources accompanies my keynote talk “Open source is good for business”, since it’s easier to access links on a web page than in a slide deck. The talk, and these resources, are divided into sections.
View Open source is good for business on Notist.
About Open Source
Open source definition: https://opensource.org/osd
Have a clear inventory of all your code
- What is SBOM (Software Bill of Materials) https://blog.sonatype.com/what-is-a-software-bill-of-materials
- Software supply chain report 2021 https://blog.sonatype.com/2021-state-of-the-software-supply-chain
- OpenSSF (Open Source Security Foundation) https://openssf.org/
- SPDX (Software Package Data eXchange) https://spdx.dev/
- OpenChain https://www.openchainproject.org/
Produce and maintain clear policies for engaging with open source
- Employee IP and contributions https://github.com/github/balanced-employee-ip-agreement
- Open source policy collection from Linux Foundation https://github.com/todogroup/policies
Be an active and intentional participant in open source
- Lots of advice here https://opensource.guide/how-to-contribute/
- How to report bugs effectively https://www.chiark.greenend.org.uk/~sgtatham/bugs.html
- Help a project without having commit rights https://lornajane.net/posts/2020/bystanders-guide-to-repository-maintenance
Business-friendly ways to support open source
- TideLift handle sponsorship and maintainer agreements of many upstream projects https://tidelift.com/
- PHP Foundation accepts corporate and individual support https://opencollective.com/phpfoundation
- OpenUK for open source, open data and open hardware in the UK https://openuk.uk/
- GitHub sponsors for sending money to projects https://github.com/sponsors
- Open Source Initiative look after the open source definition https://opensource.org/