Loading…
Shanghai, China
June 24–26, 2019
Click here for more information and registration

Simultaneous translation will be provided for all keynote and breakout sessions.
我们将为所有主题演讲和分组会议提供同声传译服务。

To view the Chinese version of this schedule please go here.
请点击此处查看中文版本。

Venue + Sponsor Showcase Map
场馆 + 赞助商展示区地图

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

OSS - Compliance Automation + Tooling [clear filter]
Wednesday, June 26
 

09:00

Continues Integration Practices for Zephyr Upstream - Hake Huang, NXP Semiconductor Inc
Continues integration(CI) is getting popular in many open source projects. There are many successful open source projects which can support CI. However, how to integrate existing open source projects and build an efficient CI pipeline is getting importance, as the project is getting much more complex. Hereinafter, we present how NXP zephyr Devops system works for NXP upstream augment testing. The proposed system contains several subsystems based on several popular open source projects, including building an internal cloudy build system with zephyr Docker file, and linking this Docker image with Jenkins Docker, a scheduler system for multiply board testing as well as virtualization validation system. and some glue scripts. With this system setting, we build up a CI system with minimum supporting resources and high reliable quality tracking and validation for upstream patches


Speakers
avatar for Hake Huang

Hake Huang

Senior Software Engineer, NXP Semiconductor Inc
NXP software engineer more than for 10 years, focusing on NXP MCU SDK validation architecture.



Wednesday June 26, 2019 09:00 - 09:35
431

09:45

Improving Security while Reducing Toil with DevSecOps - Paul Czarkowski, Pivotal
DevOps is not just about deploying software, it’s about reducing bottlenecks and bringing value to the business. By utilizing DevOps techniques we can build a strong security practice that everybody is invested in, even your Developers and Operations Teams!

In a previous role I utilized DevOps practices to lead a major transformation of the security and auditing practices of our team taking them from failure-prone manual repetitive tasks to fully automated unicorn status. This talk will outline the changes we made both technically and culturally to transform not only the security team, but the whole organization into treating security as a design goal rather than an afterthought.

You’ll leave this talk with a solid grasp of the tools and techniques needed to knock down the silos around your security team and enter a utopian world of security first engineering.

Speakers
avatar for Paul Czarkowski

Paul Czarkowski

Developer Advocate, Pivotal
Paul Czarkowski is a recovering Systems Administrator who has run infrastructure for longer than he cares to admit. After cutting his teeth in the ISP and Gaming industries Paul changed his focus to using (and contributing to) Open Source Software to improve the Operability of complex... Read More →



Wednesday June 26, 2019 09:45 - 10:20
431

10:30

The FOSSology Project – Open Source Software for Open Source License Compliance - Anupam Ghosh, Siemens Technology and Services Pvt. Ltd
In collaborative project development, it is important to get an insight of the open source software, to determine involved licensing and license obligations. FOSSology is a software project that is specialized in identifying license relevant statements. It can also scan source code for Copyright notices, Keywords and Export control relevant statements. FOSSology lets users generate compliance documentation according to the organization's needs, in a variety of data formats such as SPDX tag-value, RDF.
FOSSology, is a Linux Foundation collaboration project, licensed under the GPL-2.0.
Recently, new technology has been introduced for FOSSology, which is going towards more automation by providing a REST API for example. New scanning approaches have been developed which enables more automation at imprecise licensing. This presentation explains how users of FOSSology can use the new features.

Speakers
avatar for Anupam Ghosh

Anupam Ghosh

Open source enthusiast, Siemens, India
Anupam is working with Siemens, India. He is an Open source enthusiast, GSoC mentor, developer and maintainer of Fossology community project in github. He has around 13+ years of IT experience cutting across Embedded system, Telecom, Application/Web development and Machine Learni... Read More →



Wednesday June 26, 2019 10:30 - 11:05
431