SlideShare a Scribd company logo

Navigating Open Source Risk

Dawn Foster
Dawn Foster

Navigating open source risk

Software
1 of 18
Download to read offline
©2021 VMware, Inc. @geekygirldawn Navigating Open Source Risk Open Source Lisbon June 2021 Dr. Dawn M. Foster Director of OSS Community Strategy fosterd@vmware.com fastwonderblog.com Open Source at VMware @vmwopensource blogs.vmware.com/opensource
@geekygirldawn ©2021 VMware, Inc. Why should you care? Ownership and Governance Community Resources Final Thoughts 2 Agenda Photo by Marco Verch - CC BY 2.0
©2021 VMware, Inc. @geekygirldawn 3 whoami • Geek, traveler, reader • 20+ yr tech career focused on community & open source 
 (Intel, Puppet, Scale Factory, …) • OpenUK Board, CHAOSS Board and Maintainer, TODO Group Steering • Kubernetes contributor & CNCF Contributor Strategy SIG • PhD from the University of Greenwich focus on Linux kernel collaboration Photos by Mom, Josh Bancroft, Don Park
©2021 VMware, Inc. @geekygirldawn Your business could be disrupted 4 Why do we care about risk? https://xkcd.com/2347/
©2020 VMware, Inc. @geekygirldawn Ownership & Governance Photo by K-nekoTR - CC BY-NC-ND 2.0
©2021 VMware, Inc. @geekygirldawn 6 Business Risk Licensing Example Server Side Public License* (SSPL) *Not an Open Source Initiative (OSI) approved open source license!
©2021 VMware, Inc. @geekygirldawn 7 Undermines the project leading to forks and other disruptions Business Risk Governance Example
©2021 VMware, Inc. @geekygirldawn Leadership, trademarks, and projects 8 Determining Neutrality for Foundations? Image by Andreas Komodromos CC BY-NC 2.0
©2021 VMware, Inc. @geekygirldawn Lower risk: participate as equals 9 Neutral Foundations
©2021 VMware, Inc. @geekygirldawn Higher risk: single company in control 10 Company Originated Photo by Jan Fidler - CC BY 2.0
©2020 VMware, Inc. @geekygirldawn Lower risk: Processes for how people collaborate and make decisions 11 Governance is about People Photo by Allen and Allen - CC BY 2.0
©2020 VMware, Inc. @geekygirldawn Image by the CNCF CC BY-N 2.0 Community Image by the CNCF CC BY-NC 2.0
©2021 VMware, Inc. @geekygirldawn Lower risk: helpful, kind, respectful, and welcoming 13 Awesome Community Kubernetes CNCF CC BY 4.0
©2021 VMware, Inc. @geekygirldawn Lower risk: keeps up with contributions 14 Responsiveness Image by Joe Penniston CC BY-NC-ND 2.0
©2021 VMware, Inc. @geekygirldawn Lower risk: active contributors and organizational diversity 15 Contributor Risk Image by the CNCF CC BY-NC 2.0
@geekygirldawn ©2020 VMware, Inc. 16 Resources CNCF Contributor Strategy Tag 
 https://github.com/cncf/sig-contributor-strategy https://contribute.cncf.io/maintainers/ Linux Foundation’s TODO Group 
 https://todogroup.org/guides/ The Open Source Way Guidebook 
 https://github.com/theopensourceway/guidebook/ Photo by Vicente - CC BY-NC-ND 2.0
©2021 VMware, Inc. @geekygirldawn Make informed and deliberate decisions about how much risk we should accept and monitor / mitigate those risks. 17 Final Thoughts on Risk Photo by Mohanraj Sivanandam - CC BY 2.0
©2021 VMware, Inc. @geekygirldawn Dr. Dawn M. Foster fosterd@vmware.com fastwonderblog.com Open Source at VMware blogs.vmware.com/opensource @vmwopensource 18 Thank You! Photo by Thangaraj Kumaravel - CC BY-NC-ND 2.0

Recommended

Navigating Open Source Risk
Navigating Open Source RiskNavigating Open Source Risk
Navigating Open Source RiskDawn Foster
 
Is this Open Source Project Healthy or Lifeless?
Is this Open Source Project Healthy or Lifeless?Is this Open Source Project Healthy or Lifeless?
Is this Open Source Project Healthy or Lifeless?All Things Open
 
Is this Open Source Project Healthy or Lifeless?
Is this Open Source Project Healthy or Lifeless?Is this Open Source Project Healthy or Lifeless?
Is this Open Source Project Healthy or Lifeless?Dawn Foster
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationDawn Foster
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationDawn Foster
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationDawn Foster
 
Being a Good Corporate Citizen in Open Source
Being a Good Corporate Citizen in Open SourceBeing a Good Corporate Citizen in Open Source
Being a Good Corporate Citizen in Open SourceDawn Foster
 
Lessons from Pokémon Go's massive success
Lessons from Pokémon Go's massive successLessons from Pokémon Go's massive success
Lessons from Pokémon Go's massive successNauman Noor
 

Recommended

Navigating Open Source Risk
Navigating Open Source RiskNavigating Open Source Risk
Navigating Open Source RiskDawn Foster
 
Is this Open Source Project Healthy or Lifeless?
Is this Open Source Project Healthy or Lifeless?Is this Open Source Project Healthy or Lifeless?
Is this Open Source Project Healthy or Lifeless?All Things Open
 
Is this Open Source Project Healthy or Lifeless?
Is this Open Source Project Healthy or Lifeless?Is this Open Source Project Healthy or Lifeless?
Is this Open Source Project Healthy or Lifeless?Dawn Foster
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationDawn Foster
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationDawn Foster
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationDawn Foster
 
Being a Good Corporate Citizen in Open Source
Being a Good Corporate Citizen in Open SourceBeing a Good Corporate Citizen in Open Source
Being a Good Corporate Citizen in Open SourceDawn Foster
 
Lessons from Pokémon Go's massive success
Lessons from Pokémon Go's massive successLessons from Pokémon Go's massive success
Lessons from Pokémon Go's massive successNauman Noor
 
Navigating Open Source Project Risk
Navigating Open Source Project RiskNavigating Open Source Project Risk
Navigating Open Source Project RiskAll Things Open
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationDawn Foster
 
Open Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceOpen Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceDawn Foster
 
How to Be a Good Corporate Citizen in Open Source
How to Be a Good Corporate Citizen in Open SourceHow to Be a Good Corporate Citizen in Open Source
How to Be a Good Corporate Citizen in Open SourceDawn Foster
 
stackconf 2022: How to Be a Good Corporate Citizen in Open Source
stackconf 2022: How to Be a Good Corporate Citizen in Open Sourcestackconf 2022: How to Be a Good Corporate Citizen in Open Source
stackconf 2022: How to Be a Good Corporate Citizen in Open SourceNETWAYS
 
Be a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesBe a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesDawn Foster
 
Be a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesBe a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesDawn Foster
 
CHAOSS Metrics Overview and Examples
CHAOSS Metrics Overview and ExamplesCHAOSS Metrics Overview and Examples
CHAOSS Metrics Overview and ExamplesDawn Foster
 
Overcoming Imposter Syndrome to Become a Conference Speaker!
Overcoming Imposter Syndrome to Become a Conference Speaker!Overcoming Imposter Syndrome to Become a Conference Speaker!
Overcoming Imposter Syndrome to Become a Conference Speaker!Dawn Foster
 
Measuring Project Health at VMware
Measuring Project Health at VMwareMeasuring Project Health at VMware
Measuring Project Health at VMwareDawn Foster
 
GitHub API 101 with Python and Jupyter Notebooks
GitHub API 101 with Python and Jupyter NotebooksGitHub API 101 with Python and Jupyter Notebooks
GitHub API 101 with Python and Jupyter NotebooksAll Things Open
 
Pat Gelsinger - Welcome
Pat Gelsinger - WelcomePat Gelsinger - Welcome
Pat Gelsinger - Welcomescoopnewsgroup
 
New Capabilities and Product Strategy for .NET on PCF
New Capabilities and Product Strategy for .NET on PCF New Capabilities and Product Strategy for .NET on PCF
New Capabilities and Product Strategy for .NET on PCF VMware Tanzu
 
January 2022 patch tuesday
January 2022 patch tuesdayJanuary 2022 patch tuesday
January 2022 patch tuesdayIvanti
 
2022 December Patch Tuesday
2022 December Patch Tuesday2022 December Patch Tuesday
2022 December Patch TuesdayIvanti
 
Picking Up the Pieces: How Campaigns Can Help Us Better Track Groups
Picking Up the Pieces: How Campaigns Can Help Us Better Track GroupsPicking Up the Pieces: How Campaigns Can Help Us Better Track Groups
Picking Up the Pieces: How Campaigns Can Help Us Better Track GroupsAdam Pennington
 
CPX360_2022_Endpoint Mobile.pptx
CPX360_2022_Endpoint Mobile.pptxCPX360_2022_Endpoint Mobile.pptx
CPX360_2022_Endpoint Mobile.pptxssuser64a772
 
Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021VMware Tanzu
 
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...DevGAMM Conference
 
Application Modernization: Migrating mainframe apps to the cloud using Spring
Application Modernization: Migrating mainframe apps to the cloud using SpringApplication Modernization: Migrating mainframe apps to the cloud using Spring
Application Modernization: Migrating mainframe apps to the cloud using SpringVMware Tanzu
 
Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists Dawn Foster
 
Building Community for your Company’s OSS Projects
Building Community for your Company’s OSS ProjectsBuilding Community for your Company’s OSS Projects
Building Community for your Company’s OSS ProjectsDawn Foster
 

More Related Content

Similar to Navigating Open Source Risk

Navigating Open Source Project Risk
Navigating Open Source Project RiskNavigating Open Source Project Risk
Navigating Open Source Project RiskAll Things Open
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationDawn Foster
 
Open Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceOpen Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceDawn Foster
 
How to Be a Good Corporate Citizen in Open Source
How to Be a Good Corporate Citizen in Open SourceHow to Be a Good Corporate Citizen in Open Source
How to Be a Good Corporate Citizen in Open SourceDawn Foster
 
stackconf 2022: How to Be a Good Corporate Citizen in Open Source
stackconf 2022: How to Be a Good Corporate Citizen in Open Sourcestackconf 2022: How to Be a Good Corporate Citizen in Open Source
stackconf 2022: How to Be a Good Corporate Citizen in Open SourceNETWAYS
 
Be a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesBe a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesDawn Foster
 
Be a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesBe a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesDawn Foster
 
CHAOSS Metrics Overview and Examples
CHAOSS Metrics Overview and ExamplesCHAOSS Metrics Overview and Examples
CHAOSS Metrics Overview and ExamplesDawn Foster
 
Overcoming Imposter Syndrome to Become a Conference Speaker!
Overcoming Imposter Syndrome to Become a Conference Speaker!Overcoming Imposter Syndrome to Become a Conference Speaker!
Overcoming Imposter Syndrome to Become a Conference Speaker!Dawn Foster
 
Measuring Project Health at VMware
Measuring Project Health at VMwareMeasuring Project Health at VMware
Measuring Project Health at VMwareDawn Foster
 
GitHub API 101 with Python and Jupyter Notebooks
GitHub API 101 with Python and Jupyter NotebooksGitHub API 101 with Python and Jupyter Notebooks
GitHub API 101 with Python and Jupyter NotebooksAll Things Open
 
Pat Gelsinger - Welcome
Pat Gelsinger - WelcomePat Gelsinger - Welcome
Pat Gelsinger - Welcomescoopnewsgroup
 
New Capabilities and Product Strategy for .NET on PCF
New Capabilities and Product Strategy for .NET on PCF New Capabilities and Product Strategy for .NET on PCF
New Capabilities and Product Strategy for .NET on PCF VMware Tanzu
 
January 2022 patch tuesday
January 2022 patch tuesdayJanuary 2022 patch tuesday
January 2022 patch tuesdayIvanti
 
2022 December Patch Tuesday
2022 December Patch Tuesday2022 December Patch Tuesday
2022 December Patch TuesdayIvanti
 
Picking Up the Pieces: How Campaigns Can Help Us Better Track Groups
Picking Up the Pieces: How Campaigns Can Help Us Better Track GroupsPicking Up the Pieces: How Campaigns Can Help Us Better Track Groups
Picking Up the Pieces: How Campaigns Can Help Us Better Track GroupsAdam Pennington
 
CPX360_2022_Endpoint Mobile.pptx
CPX360_2022_Endpoint Mobile.pptxCPX360_2022_Endpoint Mobile.pptx
CPX360_2022_Endpoint Mobile.pptxssuser64a772
 
Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021VMware Tanzu
 
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...DevGAMM Conference
 
Application Modernization: Migrating mainframe apps to the cloud using Spring
Application Modernization: Migrating mainframe apps to the cloud using SpringApplication Modernization: Migrating mainframe apps to the cloud using Spring
Application Modernization: Migrating mainframe apps to the cloud using SpringVMware Tanzu
 

Similar to Navigating Open Source Risk (20)

Navigating Open Source Project Risk
Navigating Open Source Project RiskNavigating Open Source Project Risk
Navigating Open Source Project Risk
 
Collaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company AffiliationCollaborative Leadership: Governance Beyond Company Affiliation
Collaborative Leadership: Governance Beyond Company Affiliation
 
Open Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceOpen Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right Balance
 
How to Be a Good Corporate Citizen in Open Source
How to Be a Good Corporate Citizen in Open SourceHow to Be a Good Corporate Citizen in Open Source
How to Be a Good Corporate Citizen in Open Source
 
stackconf 2022: How to Be a Good Corporate Citizen in Open Source
stackconf 2022: How to Be a Good Corporate Citizen in Open Sourcestackconf 2022: How to Be a Good Corporate Citizen in Open Source
stackconf 2022: How to Be a Good Corporate Citizen in Open Source
 
Be a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesBe a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in Kubernetes
 
Be a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in KubernetesBe a Good Corporate Citizen in Kubernetes
Be a Good Corporate Citizen in Kubernetes
 
CHAOSS Metrics Overview and Examples
CHAOSS Metrics Overview and ExamplesCHAOSS Metrics Overview and Examples
CHAOSS Metrics Overview and Examples
 
Overcoming Imposter Syndrome to Become a Conference Speaker!
Overcoming Imposter Syndrome to Become a Conference Speaker!Overcoming Imposter Syndrome to Become a Conference Speaker!
Overcoming Imposter Syndrome to Become a Conference Speaker!
 
Measuring Project Health at VMware
Measuring Project Health at VMwareMeasuring Project Health at VMware
Measuring Project Health at VMware
 
GitHub API 101 with Python and Jupyter Notebooks
GitHub API 101 with Python and Jupyter NotebooksGitHub API 101 with Python and Jupyter Notebooks
GitHub API 101 with Python and Jupyter Notebooks
 
Pat Gelsinger - Welcome
Pat Gelsinger - WelcomePat Gelsinger - Welcome
Pat Gelsinger - Welcome
 
New Capabilities and Product Strategy for .NET on PCF
New Capabilities and Product Strategy for .NET on PCF New Capabilities and Product Strategy for .NET on PCF
New Capabilities and Product Strategy for .NET on PCF
 
January 2022 patch tuesday
January 2022 patch tuesdayJanuary 2022 patch tuesday
January 2022 patch tuesday
 
2022 December Patch Tuesday
2022 December Patch Tuesday2022 December Patch Tuesday
2022 December Patch Tuesday
 
Picking Up the Pieces: How Campaigns Can Help Us Better Track Groups
Picking Up the Pieces: How Campaigns Can Help Us Better Track GroupsPicking Up the Pieces: How Campaigns Can Help Us Better Track Groups
Picking Up the Pieces: How Campaigns Can Help Us Better Track Groups
 
CPX360_2022_Endpoint Mobile.pptx
CPX360_2022_Endpoint Mobile.pptxCPX360_2022_Endpoint Mobile.pptx
CPX360_2022_Endpoint Mobile.pptx
 
Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021Aaron Swain at VMware Tanzu Public Sector Connect 2021
Aaron Swain at VMware Tanzu Public Sector Connect 2021
 
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...
Audience-Driven Entertainment as the Next Frontier in Gaming / Christopher Ha...
 
Application Modernization: Migrating mainframe apps to the cloud using Spring
Application Modernization: Migrating mainframe apps to the cloud using SpringApplication Modernization: Migrating mainframe apps to the cloud using Spring
Application Modernization: Migrating mainframe apps to the cloud using Spring
 

More from Dawn Foster

Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists Dawn Foster
 
Building Community for your Company’s OSS Projects
Building Community for your Company’s OSS ProjectsBuilding Community for your Company’s OSS Projects
Building Community for your Company’s OSS ProjectsDawn Foster
 
Building Community for your Company’s OSS Project
Building Community for your Company’s OSS ProjectBuilding Community for your Company’s OSS Project
Building Community for your Company’s OSS ProjectDawn Foster
 
How to be a terrible hiring manager
How to be a terrible hiring managerHow to be a terrible hiring manager
How to be a terrible hiring managerDawn Foster
 
A week in the Life of Kubernetes
A week in the Life of KubernetesA week in the Life of Kubernetes
A week in the Life of KubernetesDawn Foster
 
Open Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceOpen Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceDawn Foster
 
Strategies to Balance the Needs of the Company and the Community
Strategies to Balance the Needs of the Company and the CommunityStrategies to Balance the Needs of the Company and the Community
Strategies to Balance the Needs of the Company and the CommunityDawn Foster
 
Being a Good Corporate Citizen in Open Source
Being a Good Corporate Citizen in Open SourceBeing a Good Corporate Citizen in Open Source
Being a Good Corporate Citizen in Open SourceDawn Foster
 
Open Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceOpen Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceDawn Foster
 
Building a Community Metrics Strategy FOSDEM 2019
Building a Community Metrics Strategy FOSDEM 2019Building a Community Metrics Strategy FOSDEM 2019
Building a Community Metrics Strategy FOSDEM 2019Dawn Foster
 
Open Source Collaboration: Finding the right balance
Open Source Collaboration: Finding the right balanceOpen Source Collaboration: Finding the right balance
Open Source Collaboration: Finding the right balanceDawn Foster
 
Collaboration in Linux Kernel mailing lists
Collaboration in Linux Kernel mailing listsCollaboration in Linux Kernel mailing lists
Collaboration in Linux Kernel mailing listsDawn Foster
 
Collaboration in inux Kernel Mailing Lists 2018
Collaboration in inux Kernel Mailing Lists 2018Collaboration in inux Kernel Mailing Lists 2018
Collaboration in inux Kernel Mailing Lists 2018Dawn Foster
 
Collaboration in Linux kernel Mailing Lists
Collaboration in Linux kernel Mailing ListsCollaboration in Linux kernel Mailing Lists
Collaboration in Linux kernel Mailing ListsDawn Foster
 
Understanding Collaboration in Fluid Organizations, a Proximity Approach
Understanding Collaboration in Fluid Organizations, a Proximity ApproachUnderstanding Collaboration in Fluid Organizations, a Proximity Approach
Understanding Collaboration in Fluid Organizations, a Proximity ApproachDawn Foster
 
Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing ListsDawn Foster
 

More from Dawn Foster (16)

Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists
 
Building Community for your Company’s OSS Projects
Building Community for your Company’s OSS ProjectsBuilding Community for your Company’s OSS Projects
Building Community for your Company’s OSS Projects
 
Building Community for your Company’s OSS Project
Building Community for your Company’s OSS ProjectBuilding Community for your Company’s OSS Project
Building Community for your Company’s OSS Project
 
How to be a terrible hiring manager
How to be a terrible hiring managerHow to be a terrible hiring manager
How to be a terrible hiring manager
 
A week in the Life of Kubernetes
A week in the Life of KubernetesA week in the Life of Kubernetes
A week in the Life of Kubernetes
 
Open Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceOpen Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right Balance
 
Strategies to Balance the Needs of the Company and the Community
Strategies to Balance the Needs of the Company and the CommunityStrategies to Balance the Needs of the Company and the Community
Strategies to Balance the Needs of the Company and the Community
 
Being a Good Corporate Citizen in Open Source
Being a Good Corporate Citizen in Open SourceBeing a Good Corporate Citizen in Open Source
Being a Good Corporate Citizen in Open Source
 
Open Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right BalanceOpen Source Collaboration and Companies: Finding the Right Balance
Open Source Collaboration and Companies: Finding the Right Balance
 
Building a Community Metrics Strategy FOSDEM 2019
Building a Community Metrics Strategy FOSDEM 2019Building a Community Metrics Strategy FOSDEM 2019
Building a Community Metrics Strategy FOSDEM 2019
 
Open Source Collaboration: Finding the right balance
Open Source Collaboration: Finding the right balanceOpen Source Collaboration: Finding the right balance
Open Source Collaboration: Finding the right balance
 
Collaboration in Linux Kernel mailing lists
Collaboration in Linux Kernel mailing listsCollaboration in Linux Kernel mailing lists
Collaboration in Linux Kernel mailing lists
 
Collaboration in inux Kernel Mailing Lists 2018
Collaboration in inux Kernel Mailing Lists 2018Collaboration in inux Kernel Mailing Lists 2018
Collaboration in inux Kernel Mailing Lists 2018
 
Collaboration in Linux kernel Mailing Lists
Collaboration in Linux kernel Mailing ListsCollaboration in Linux kernel Mailing Lists
Collaboration in Linux kernel Mailing Lists
 
Understanding Collaboration in Fluid Organizations, a Proximity Approach
Understanding Collaboration in Fluid Organizations, a Proximity ApproachUnderstanding Collaboration in Fluid Organizations, a Proximity Approach
Understanding Collaboration in Fluid Organizations, a Proximity Approach
 
Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists Collaboration in Linux Kernel Mailing Lists
Collaboration in Linux Kernel Mailing Lists
 

Recently uploaded

GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfGOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfAlina Yurenko
 
How to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationHow to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationBradBedford3
 
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Cizo Technology Services
 
React Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaReact Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaHanief Utama
 
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...OnePlan Solutions
 
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Matt Ray
 
Unveiling the Future: Sylius 2.0 New Features
Unveiling the Future: Sylius 2.0 New FeaturesUnveiling the Future: Sylius 2.0 New Features
Unveiling the Future: Sylius 2.0 New FeaturesŁukasz Chruściel
 
Sending Calendar Invites on SES and Calendarsnack.pdf
Sending Calendar Invites on SES and Calendarsnack.pdfSending Calendar Invites on SES and Calendarsnack.pdf
Sending Calendar Invites on SES and Calendarsnack.pdf31events.com
 
MYjobs Presentation Django-based project
MYjobs Presentation Django-based projectMYjobs Presentation Django-based project
MYjobs Presentation Django-based projectAnoyGreter
 
UI5ers live - Custom Controls wrapping 3rd-party libs.pptx
UI5ers live - Custom Controls wrapping 3rd-party libs.pptxUI5ers live - Custom Controls wrapping 3rd-party libs.pptx
UI5ers live - Custom Controls wrapping 3rd-party libs.pptxAndreas Kunz
 
A healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfA healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfMarharyta Nedzelska
 
Odoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 EnterpriseOdoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 Enterprisepreethippts
 
Post Quantum Cryptography – The Impact on Identity
Post Quantum Cryptography – The Impact on IdentityPost Quantum Cryptography – The Impact on Identity
Post Quantum Cryptography – The Impact on Identityteam-WIBU
 
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...OnePlan Solutions
 
Ahmed Motair CV April 2024 (Senior SW Developer)
Ahmed Motair CV April 2024 (Senior SW Developer)Ahmed Motair CV April 2024 (Senior SW Developer)
Ahmed Motair CV April 2024 (Senior SW Developer)Ahmed Mater
 
Powering Real-Time Decisions with Continuous Data Streams
Powering Real-Time Decisions with Continuous Data StreamsPowering Real-Time Decisions with Continuous Data Streams
Powering Real-Time Decisions with Continuous Data StreamsSafe Software
 
英国UN学位证,北安普顿大学毕业证书1:1制作
英国UN学位证,北安普顿大学毕业证书1:1制作英国UN学位证,北安普顿大学毕业证书1:1制作
英国UN学位证,北安普顿大学毕业证书1:1制作qr0udbr0
 
Precise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalPrecise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalLionel Briand
 
PREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationPREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationvaddepallysandeep122
 
Machine Learning Software Engineering Patterns and Their Engineering
Machine Learning Software Engineering Patterns and Their EngineeringMachine Learning Software Engineering Patterns and Their Engineering
Machine Learning Software Engineering Patterns and Their EngineeringHironori Washizaki
 

Recently uploaded (20)

GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdfGOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
GOING AOT WITH GRAALVM – DEVOXX GREECE.pdf
 
How to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationHow to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion Application
 
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
Global Identity Enrolment and Verification Pro Solution - Cizo Technology Ser...
 
React Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief UtamaReact Server Component in Next.js by Hanief Utama
React Server Component in Next.js by Hanief Utama
 
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
Maximizing Efficiency and Profitability with OnePlan’s Professional Service A...
 
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
Open Source Summit NA 2024: Open Source Cloud Costs - OpenCost's Impact on En...
 
Unveiling the Future: Sylius 2.0 New Features
Unveiling the Future: Sylius 2.0 New FeaturesUnveiling the Future: Sylius 2.0 New Features
Unveiling the Future: Sylius 2.0 New Features
 
Sending Calendar Invites on SES and Calendarsnack.pdf
Sending Calendar Invites on SES and Calendarsnack.pdfSending Calendar Invites on SES and Calendarsnack.pdf
Sending Calendar Invites on SES and Calendarsnack.pdf
 
MYjobs Presentation Django-based project
MYjobs Presentation Django-based projectMYjobs Presentation Django-based project
MYjobs Presentation Django-based project
 
UI5ers live - Custom Controls wrapping 3rd-party libs.pptx
UI5ers live - Custom Controls wrapping 3rd-party libs.pptxUI5ers live - Custom Controls wrapping 3rd-party libs.pptx
UI5ers live - Custom Controls wrapping 3rd-party libs.pptx
 
A healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfA healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdf
 
Odoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 EnterpriseOdoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 Enterprise
 
Post Quantum Cryptography – The Impact on Identity
Post Quantum Cryptography – The Impact on IdentityPost Quantum Cryptography – The Impact on Identity
Post Quantum Cryptography – The Impact on Identity
 
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
Tech Tuesday - Mastering Time Management Unlock the Power of OnePlan's Timesh...
 
Ahmed Motair CV April 2024 (Senior SW Developer)
Ahmed Motair CV April 2024 (Senior SW Developer)Ahmed Motair CV April 2024 (Senior SW Developer)
Ahmed Motair CV April 2024 (Senior SW Developer)
 
Powering Real-Time Decisions with Continuous Data Streams
Powering Real-Time Decisions with Continuous Data StreamsPowering Real-Time Decisions with Continuous Data Streams
Powering Real-Time Decisions with Continuous Data Streams
 
英国UN学位证,北安普顿大学毕业证书1:1制作
英国UN学位证,北安普顿大学毕业证书1:1制作英国UN学位证,北安普顿大学毕业证书1:1制作
英国UN学位证,北安普顿大学毕业证书1:1制作
 
Precise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive GoalPrecise and Complete Requirements? An Elusive Goal
Precise and Complete Requirements? An Elusive Goal
 
PREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationPREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentation
 
Machine Learning Software Engineering Patterns and Their Engineering
Machine Learning Software Engineering Patterns and Their EngineeringMachine Learning Software Engineering Patterns and Their Engineering
Machine Learning Software Engineering Patterns and Their Engineering
 

Navigating Open Source Risk

  • 1. ©2021 VMware, Inc. @geekygirldawn Navigating Open Source Risk Open Source Lisbon June 2021 Dr. Dawn M. Foster Director of OSS Community Strategy fosterd@vmware.com fastwonderblog.com Open Source at VMware @vmwopensource blogs.vmware.com/opensource
  • 2. @geekygirldawn ©2021 VMware, Inc. Why should you care? Ownership and Governance Community Resources Final Thoughts 2 Agenda Photo by Marco Verch - CC BY 2.0
  • 3. ©2021 VMware, Inc. @geekygirldawn 3 whoami • Geek, traveler, reader • 20+ yr tech career focused on community & open source 
 (Intel, Puppet, Scale Factory, …) • OpenUK Board, CHAOSS Board and Maintainer, TODO Group Steering • Kubernetes contributor & CNCF Contributor Strategy SIG • PhD from the University of Greenwich focus on Linux kernel collaboration Photos by Mom, Josh Bancroft, Don Park
  • 4. ©2021 VMware, Inc. @geekygirldawn Your business could be disrupted 4 Why do we care about risk? https://xkcd.com/2347/
  • 5. ©2020 VMware, Inc. @geekygirldawn Ownership & Governance Photo by K-nekoTR - CC BY-NC-ND 2.0
  • 6. ©2021 VMware, Inc. @geekygirldawn 6 Business Risk Licensing Example Server Side Public License* (SSPL) *Not an Open Source Initiative (OSI) approved open source license!
  • 7. ©2021 VMware, Inc. @geekygirldawn 7 Undermines the project leading to forks and other disruptions Business Risk Governance Example
  • 8. ©2021 VMware, Inc. @geekygirldawn Leadership, trademarks, and projects 8 Determining Neutrality for Foundations? Image by Andreas Komodromos CC BY-NC 2.0
  • 9. ©2021 VMware, Inc. @geekygirldawn Lower risk: participate as equals 9 Neutral Foundations
  • 10. ©2021 VMware, Inc. @geekygirldawn Higher risk: single company in control 10 Company Originated Photo by Jan Fidler - CC BY 2.0
  • 11. ©2020 VMware, Inc. @geekygirldawn Lower risk: Processes for how people collaborate and make decisions 11 Governance is about People Photo by Allen and Allen - CC BY 2.0
  • 12. ©2020 VMware, Inc. @geekygirldawn Image by the CNCF CC BY-N 2.0 Community Image by the CNCF CC BY-NC 2.0
  • 13. ©2021 VMware, Inc. @geekygirldawn Lower risk: helpful, kind, respectful, and welcoming 13 Awesome Community Kubernetes CNCF CC BY 4.0
  • 14. ©2021 VMware, Inc. @geekygirldawn Lower risk: keeps up with contributions 14 Responsiveness Image by Joe Penniston CC BY-NC-ND 2.0
  • 15. ©2021 VMware, Inc. @geekygirldawn Lower risk: active contributors and organizational diversity 15 Contributor Risk Image by the CNCF CC BY-NC 2.0
  • 16. @geekygirldawn ©2020 VMware, Inc. 16 Resources CNCF Contributor Strategy Tag 
 https://github.com/cncf/sig-contributor-strategy https://contribute.cncf.io/maintainers/ Linux Foundation’s TODO Group 
 https://todogroup.org/guides/ The Open Source Way Guidebook 
 https://github.com/theopensourceway/guidebook/ Photo by Vicente - CC BY-NC-ND 2.0
  • 17. ©2021 VMware, Inc. @geekygirldawn Make informed and deliberate decisions about how much risk we should accept and monitor / mitigate those risks. 17 Final Thoughts on Risk Photo by Mohanraj Sivanandam - CC BY 2.0
  • 18. ©2021 VMware, Inc. @geekygirldawn Dr. Dawn M. Foster fosterd@vmware.com fastwonderblog.com Open Source at VMware blogs.vmware.com/opensource @vmwopensource 18 Thank You! Photo by Thangaraj Kumaravel - CC BY-NC-ND 2.0