August 19-21 - Co-Located Events
August 21-23 - Conference
Hilton San Diego Bayfront - San Diego, CA
More information for Open Source Summit + Embedded Linux Conference North America 2019
Back To Schedule
Wednesday, August 21 • 2:25pm - 3:00pm
Welcome Back to Dependency Hell - OSS Compliance in the Age of Software Reuse - Nisha Kumar, VMware*

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
This talk is about meeting Open Source Software Compliance in our current state of Software
Development. It is also a reckoning on our current state of Software Development with regards to Software Reuse, in other words, Dependency Management. The first step in meeting OSS legal obligations is to know what software your product or project is dependent on. This is an exponentially hard problem now when a single module can contain hundreds of dependencies and each development ecosystem has its own principles and tooling around tracking them. Wrapping each microservice in its own runtime environment (containers) has not solved this problem, but rather distributed it across an often times unreliable and unsafe network.

This talk doesn't provide a magic solution to a problem decades in the making, but it tries to raise awareness of the problem and lists some requirements to consider while the industry ponders on how to untangle itself.


Nisha Kumar

Security Engineer, Oracle
Nisha is a Security Engineer at Oracle. She has been a DevOps engineer for embedded systems and a Radio Frequency Engineer in semiconductor manufacturing. She has been involved in Open Source for more than 15 years. You can follow her work on Twitter at @_ctlfsh

Wednesday August 21, 2019 2:25pm - 3:00pm PDT
  Automating Compliance
  • Session Slides Included Yes