How well do you know your open source licensing?

January 9, 2012 By Terry Bernstein 0

Choosing components with appropriate licenses is critical to ensuring you realize the benefits and avoid the risks when developing with open source components. But, how well do you know your licenses?

  • Can you describe the differences between permissive, weakly protective and copyleft licenses?
  • Do you understand the ramifications of including copyleft licensed components in your commercial applications?
  • Do you know how component dependencies affect your application’s licensing?

If you want to brush up on your knowledge, please check out our short paper on open source licensing available here.

 

 

Categories: Insight, Sonatype Tags: ,

Tips for Increasing Open Source Benefits– Tips #1 and #2

October 17, 2011 By Terry Bernstein 0

With our launch of Insight, we’ve been talking to a lot of customers and prospective customers about effective management of open source-based development.  At this point, we’ve heard it all.  But some trends have emerged.  One thing is clear — virtually everyone wants to use more open source in their development processs, but realizes the need to effectively manage its use.  With thousands of components in use across their organizations, many people struggle with where to start.  With this in mind, we’ve put together a ‘top 10 list” to get things started.  You’ll find a summary of the entire list here.

We’ll be exploring each item in more depth through a series of five blog posts.   But for now, let’s start at the beginning with understanding your current usage of open source components. (more…)

Categories: Insight, Sonatype Tags: ,

Avoid Lawyers — Track Your Licenses

October 14, 2011 By Tim O'Brien 0
Raise your hand if you’ve ever been involved in a contentious intellectual property dispute.   (Ok, put your hand down, this is a blog, and I can’t see you.)   I asked a room full of developers this question last year, and I saw that about 5-10% of the people in the room raised a hand.  My next question was, “Ok, those of you who raised your hand, keep them raised if you enjoyed the experience.”    Of course, this question was a setup, no one’s hand was in the air.     These developers and I share an experience — we’ve had to go through the arduous task of dissecting years of commit history and IP clearance to support litigation.  This experience is becoming more and more common (and complex) as many companies start to use open source software without understanding the ramifications of certain licenses.

As someone who has been through the process of supporting litigation I want to share my experience so that you understand what could happen when your organization incorporates OSS components under the wrong license or deals with code of questionable provenance. I’m writing this blog entry to convey the experience of being a developer who has to support litigation – it isn’t fun or productive, and it usually something that is completely avoidable.

(more…)
Categories: Insight, Sonatype Tags:

Publishing Your Artifacts to the Central Repository

October 12, 2011 By Brian Fox 0

Sonatype makes it easy to add your projects to the Central Repository with a free, public hosting service called OSSRH. We first blogged about this back in 2009, but given the growth in the community, we thought some of you may not have seen that post, so we decided to update it. (more…)

Answers to your Questions about Insight

October 10, 2011 By Larry Roshfeld 0

We want to thank everyone that attended the webinar on Thursday, October 6 titled Open Source Goodness – Potential Risks = Insight. Unfortunately we didn’t have time to answer all the great questions during the event, so we’ve answered them here for everyone’s benefit. If you missed the webinar, you can register to view a replay here. (more…)

Categories: Insight, Sonatype, Webinar Tags: ,
« Older Entries