FOSSA: Open Source Management with Kevin Wang

Every company has a software supply chain.

A company builds its products from custom code, paid APIs, paid proprietary binaries, and open source software libraries. As the types of software available have increased, the management of the software supply chain has become complex. 

Large software companies have always needed to ensure the security of their software. With the growing variety of open source licenses, these companies also have to deal with an increased set of legal complexities. If an open source project is used in a way that violates an open source license, the company is subject to legal risk.

FOSSA is a company that focuses on automating the management of open source compliance and security. Kevin Wang is the CEO of FOSSA, and he joins the show to discuss the modern issues of software licensing and his experience building a company.

Sponsorship inquiries: sponsor@softwareengineeringdaily.com

Check out our active projects:

  • We are hiring a head of growth. If you like Software Engineering Daily and consider yourself competent in sales, marketing, and strategy, send me an email: jeff@softwareengineeringdaily.com
  • FindCollabs is a place to build open source software.
  • The SEDaily app for iOS and Android includes all 1000 of our old episodes, as well as related links, greatest hits, and topics. Subscribe for ad-free episodes.

Transcript

Transcript provided by We Edit Podcasts. Software Engineering Daily listeners can go to weeditpodcasts.com/sed to get 20% off the first two months of audio editing and transcription services. Thanks to We Edit Podcasts for partnering with SE Daily. Please click here to view this show’s transcript.


Sponsors

If you are overwhelmed by your inbox, and you are almost ready to declare email bankruptcy, try out SaneBox. In the onboarding process, SaneBox analyzes your emails and helps you sort them into categories. You can get a free 14 day trial and a $25 credit by going to sanebox.com/SED.

If you’re a SaaS or Software vendor looking to modernize your application distribution to gain more enterprise adoption, check out Replicated.com. Replicated provides tools to deliver your Kubernetes-based application to enterprise customers as a modern on-prem, private instance.

Cox Automotive is looking for software engineers, data engineers, scrum masters, and a variety of other positions to help push the technology forward. If you want to innovate in the world of car buying, selling, and ownership, check out COXAUTOTECH.COM to find out more about career opportunities and what it’s like working at Cox Automotive. Cox Automotive isn’t a car company. They are a technology company that’s transforming the automotive industry.

Jaspersoft offers embeddable reports, dashboards, and data visualizations that developers love. Give users intuitive access to data in the ideal place for them to take action—within your application. To check out a sample application with embedded analytics, go to softwareengineeringdaily.com/jaspersoft

Software Weekly

Software Weekly

Subscribe to Software Weekly, a curated weekly newsletter featuring the best and newest from the software engineering community.