August 19-21 - Co-Located Events
August 21-23 - Conference
Hilton San Diego Bayfront - San Diego, CA
More information for Open Source Summit + Embedded Linux Conference North America 2019
Back To Schedule
Wednesday, August 21 • 2:25pm - 3:00pm
Welcome Back to Dependency Hell - OSS Compliance in the Age of Software Reuse - Nisha Kumar, VMware*

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
This talk is about meeting Open Source Software Compliance in our current state of Software
Development. It is also a reckoning on our current state of Software Development with regards to Software Reuse, in other words, Dependency Management. The first step in meeting OSS legal obligations is to know what software your product or project is dependent on. This is an exponentially hard problem now when a single module can contain hundreds of dependencies and each development ecosystem has its own principles and tooling around tracking them. Wrapping each microservice in its own runtime environment (containers) has not solved this problem, but rather distributed it across an often times unreliable and unsafe network.

This talk doesn't provide a magic solution to a problem decades in the making, but it tries to raise awareness of the problem and lists some requirements to consider while the industry ponders on how to untangle itself.

avatar for Nisha Kumar

Nisha Kumar

Open Source Engineer, VMware
Nisha Kumar is an Open Source Engineer at VMware’s Open Source Technology Center. She is one of the maintainers of Tern, a container image inspection tool for OSS license compliance. She has spoken at several events including All Things Open, SCaLE, and a previous KubeCon.

Wednesday August 21, 2019 2:25pm - 3:00pm PDT
  Automating Compliance
  • Session Slides Included Yes