SlideShare a Scribd company logo

HP Fossology v5.3

fOSSa - Free Open Source Software Academia Conference
fOSSa - Free Open Source Software Academia Conference

Presentation HP Fossology - Opern Source - Code analysis

Technology
1 of 27
Download to read offline
Bruno Cornec HP, EMEA Open Source Profession Lead The FOSSology project September 2013 Version 5.3
Introducing Myself ● Software engineering and Unices since 1988 ● Mostly Configuration Management Systems (CMS), Build systems, quality tools, on multiple commercial Unix systems ● Discover Open Source & Linux (OSL) & first contributions in 1993 ● Full time on OSL since 1995, first as HP reseller then @HP ● Currently: ● Master Technology Architect on OSL for the HP/Intel Solution Center, Grenoble ● OSL HP Advocate ● EMEA OSL HP Profession Lead ● Solutions Linux Conference and OWF board member ● MondoRescue, Dploy.org, Project-Builder.org project lead ● LinuxCOE, mrepo, tellico, rinse, fossology, collectl contributor ● FOSSBazaar and OSL Governance enthusiast ● Mandriva, Mageia, Fedora packager
FOSSology.org FOSSology's etymology: ΦΟΣΣ: Free Open Source Software λογος: science, study So FOSSology == FOSS study
Goal The goal of the FOSSology project is to create tools and a framework to reduce fear, uncertainty, and doubt in the use, development, and distribution of FOSS. FOSSology is a static analysis framework to learn what we can by scanning FOSS itself. Analyze the code, save the results in a database, report results through a Web (or scripted) interface. Focus now on License Management
FOSSology & the Linux Foundation
License Discovery Scan every single file in a tar file (or package, or ISO, distro or …) Fuzzy match against a library of > 400+ known licenses. Examine the non-matching portions looking for text that could be an unknown license. Nomos, the now GPLed license analysis tool, is the result of 10+ years of scanning @HP
FOSSology Process Flow
File upload screenshot
Let’s Use FOSSology
Job queue screenshot
Benefit from FOSSology results
License browser screenshot
Architecture
Requirements - Linux System - Apache Web Server 2.x - PHP 5.x - PostgreSQL > 8.3 - Some libraries (libmagic, libxml2, libextractor) - Some commands (ar, bzcat, cabextract, fls cpio, dpkg, icat, isoinfo, pdftotext, rpm, rpm2cpio, tar, upx- ucl, unrar, unzip, wget, zcat) - Disk Space - CPU resources
Disturbing Image
Know Thy Licenses
Timeline
Meta data
Buckets
Comparisons
What's new in fossology 2.x 2.0 Announced Jun 7, 2012 : Restructure, few new features. New more robust batch scheduler (redesigned) More modularity in code (ease contributions for agents and allow module release independantly). Improved tags management, code documentation, testing Scan logs independant from scheduler logs. UI viewable Future 2.x: - SPDX support http://spdx.org/ The goal of this specification is to enable companies and organizations to share license and component information (metadata) for software package and related content with the aim of facilitating license and other policy compliance. - Binary analysis - Dependency analysis
Fossology and SPDX
Other uses for FOSSology o Copyright geneology o Trademark search o Vulnerability tracking o Dependency graphs o Distro, package, file diffs o Localization reports o Code Plagiarism o Vulnerability tracking o ? o Your input here An Open Source project. => Contributions are encouraged.
Public repository Availability as of August 2012, 30 of a public FOSSology instance, hosted by the University of Nebraska, Omaha as part of their UNO project. FOSSology 2.0 Ubuntu 10.04.4 LTS 2GB RAM 50GB HD (92% free) 1x Intel Xeon 2.8 GHz w/ 128K cache https://fossology.ist.unomaha.edu/ Contact: Matt Germonprez "Now freely available to open source projects, corporate users, and academic institutions that wish to analyze open source software for licensing and copyright, as well as educate students on these important issues.“ Also working on an SPDX 1.1 agent
06/09/13 29 FLOSS Governance Workshop Open Source Baseline Business Drivers Various open source touch points in your company Awareness, responsibilities , risks, processes Legal Aspects of Open Source Governance Assessment of Free and Open source software phenomenon Detailed discussion of Open Source Licenses Bridging the legal and technical communities Other considerations: WEB-based services, mergers and acquisitions, other Automating Open Source Compliance Open Source discovery License detection and analysis Open Source Policy Best Practices Use of open source – when appropriate, when not appropriate for your business Review of licenses, product distribution considerations Considerations for employee contribution to open source community Company relationship with community Open Source Governance Processes Best practices for open source tracking, review and management Open Source Compliance Lifecycle, workflow Building Internal Open Source Communities Workshop designed to guide through the top issues around management of Open Source in the enterprise. Targeted at a cross-organizational audience, including auditing, legal, procurement, operational risk management, technology strategy, and line-of-business departments
“The evolution of FLOSS and the Internet are tightly coupled” Web Resources FOSSOlogy http://www.fossology.org Mailing Lists, contacts http://fossology.org/contact_us fossology@fossology.org IRC #fossology on irc.oftc.net :6667 Public FOSSOlogy instance https://fossology.ist.unomaha.edu/ Plume details http://www.projet-plume.org/fiche/fossology Project-Builder http://trac.project-builder.org Open Source at HP http://opensource.hp.com ProLiant & Linux http://www.hp.com/go/proliantlinux Linux Foundation Open Compliance Program http://www.linuxfoundation.org/programs/legal/compliance FOSSology users: HP, ALU, Siemens, INRIA, OW2
”Changes are never easy to make. There is comfort and safety in tradition, but change must come, no matter how painful or expensive it may be.” Bill Hewlett Bruno.Cornec@hp.com (Open Source and Linux Technology Architect at the HP/Intel Solution Center) http://www.hp.com/linux http://opensource.hp.com http://fossology.org Thanks goes to: Linus Torvalds, Richard Stallman, Eric Raymond, Nat Makarevitch, René Cougnenc, Eric Dumas, Rémy Card, Bdale Garbee, Bryan Gartner, Mary Laser, Gallig Renaud, Vincent Ma, Phil Robb, Bob Gobeille, Martin Michlmayr among others, for their work and devotion to the Open Source Software cause... and my family for their patience :-) Contact – Thanks - Questions

Recommended

Shawn.trela ppt
Shawn.trela pptShawn.trela ppt
Shawn.trela ppttrela
 
2009 - Glass Fish Project
2009 - Glass Fish Project2009 - Glass Fish Project
2009 - Glass Fish ProjectfOSSa - Free Open Source Software Academia Conference
 
Empowering Communities for Games - IDEA 7-9-2010 (Games Convention Online)
Empowering Communities for Games - IDEA 7-9-2010 (Games Convention Online)Empowering Communities for Games - IDEA 7-9-2010 (Games Convention Online)
Empowering Communities for Games - IDEA 7-9-2010 (Games Convention Online)International Digital Entertainment Agency (IDEA)
 
Emmanuel Ngabirano
Emmanuel NgabiranoEmmanuel Ngabirano
Emmanuel NgabiranoInfectious Diseases Institute
 
Edtec685 Aip Presentation
Edtec685 Aip PresentationEdtec685 Aip Presentation
Edtec685 Aip Presentationjmdoane
 
高崎経済大学の受験..
高崎経済大学の受験..高崎経済大学の受験..
高崎経済大学の受験..kobayashimasakazu
 
Laporan Tahunan AJI 2011 - Menjelang sinyal merah
Laporan Tahunan AJI 2011 - Menjelang sinyal merahLaporan Tahunan AJI 2011 - Menjelang sinyal merah
Laporan Tahunan AJI 2011 - Menjelang sinyal merahFederation of Independent Media Workers Union
 
Raicesdeecuaciones
RaicesdeecuacionesRaicesdeecuaciones
Raicesdeecuacionesuis
 

Recommended

Shawn.trela ppt
Shawn.trela pptShawn.trela ppt
Shawn.trela ppttrela
 
2009 - Glass Fish Project
2009 - Glass Fish Project2009 - Glass Fish Project
2009 - Glass Fish ProjectfOSSa - Free Open Source Software Academia Conference
 
Empowering Communities for Games - IDEA 7-9-2010 (Games Convention Online)
Empowering Communities for Games - IDEA 7-9-2010 (Games Convention Online)Empowering Communities for Games - IDEA 7-9-2010 (Games Convention Online)
Empowering Communities for Games - IDEA 7-9-2010 (Games Convention Online)International Digital Entertainment Agency (IDEA)
 
Emmanuel Ngabirano
Emmanuel NgabiranoEmmanuel Ngabirano
Emmanuel NgabiranoInfectious Diseases Institute
 
Edtec685 Aip Presentation
Edtec685 Aip PresentationEdtec685 Aip Presentation
Edtec685 Aip Presentationjmdoane
 
高崎経済大学の受験..
高崎経済大学の受験..高崎経済大学の受験..
高崎経済大学の受験..kobayashimasakazu
 
Laporan Tahunan AJI 2011 - Menjelang sinyal merah
Laporan Tahunan AJI 2011 - Menjelang sinyal merahLaporan Tahunan AJI 2011 - Menjelang sinyal merah
Laporan Tahunan AJI 2011 - Menjelang sinyal merahFederation of Independent Media Workers Union
 
Raicesdeecuaciones
RaicesdeecuacionesRaicesdeecuaciones
Raicesdeecuacionesuis
 
Master template5
Master template5Master template5
Master template5Theogus
 
Politik Uang dan Pemilu 2009: Catatan kritis untuk jurnalis
Politik Uang dan Pemilu 2009: Catatan kritis untuk jurnalisPolitik Uang dan Pemilu 2009: Catatan kritis untuk jurnalis
Politik Uang dan Pemilu 2009: Catatan kritis untuk jurnalisFederation of Independent Media Workers Union
 
OWF2013 INTERNET OF THINGS
OWF2013 INTERNET OF THINGSOWF2013 INTERNET OF THINGS
OWF2013 INTERNET OF THINGSfOSSa - Free Open Source Software Academia Conference
 
Life after sun solaris death - open dj - fossa2011
Life after sun solaris death - open dj - fossa2011Life after sun solaris death - open dj - fossa2011
Life after sun solaris death - open dj - fossa2011fOSSa - Free Open Source Software Academia Conference
 
Analysis and usage of forges - fossa2010
Analysis and usage of forges - fossa2010Analysis and usage of forges - fossa2010
Analysis and usage of forges - fossa2010fOSSa - Free Open Source Software Academia Conference
 
HASNAINN
HASNAINNHASNAINN
HASNAINNshahhmurad
 
Colonel转码集群
Colonel转码集群Colonel转码集群
Colonel转码集群pluschen
 
Tricare Health Matters
Tricare Health MattersTricare Health Matters
Tricare Health MattersUSSOCOM
 
Weatherchem What We Are All About
Weatherchem What We Are All AboutWeatherchem What We Are All About
Weatherchem What We Are All Aboutfrolovalevi
 
Ricardo sarmiento busqueda_portafolio
Ricardo sarmiento busqueda_portafolioRicardo sarmiento busqueda_portafolio
Ricardo sarmiento busqueda_portafoliochisnet
 
TIPS for Managing Tech and Workflow Changes in Libraries
TIPS for Managing Tech and Workflow Changes in LibrariesTIPS for Managing Tech and Workflow Changes in Libraries
TIPS for Managing Tech and Workflow Changes in LibrariesColleen Harris
 
Open Source Governance v2.5
Open Source Governance v2.5Open Source Governance v2.5
Open Source Governance v2.5Inria
 
Methods about Open Source Governance v2.5
Methods about Open Source Governance v2.5Methods about Open Source Governance v2.5
Methods about Open Source Governance v2.5fOSSa - Free Open Source Software Academia Conference
 
Open Source Governance at HP
Open Source Governance at HPOpen Source Governance at HP
Open Source Governance at HPBruno Cornec
 
GoOpen 2010: Sandro D'Elia
GoOpen 2010: Sandro D'EliaGoOpen 2010: Sandro D'Elia
GoOpen 2010: Sandro D'EliaFriprogsenteret
 
Fundamentals of Free and Open Source Software
Fundamentals of Free and Open Source SoftwareFundamentals of Free and Open Source Software
Fundamentals of Free and Open Source SoftwareRoss Gardler
 
Intro to FOSS
Intro to FOSSIntro to FOSS
Intro to FOSSmgamal87
 
Introduction to FOSS
Introduction to FOSSIntroduction to FOSS
Introduction to FOSSmgamal87
 
Coursework
CourseworkCoursework
CourseworkEssaysREasy
 
open source technology
open source technologyopen source technology
open source technologyLila Ram Yadav
 
Open source: Making connections by Sunny Pai
Open source: Making connections by Sunny PaiOpen source: Making connections by Sunny Pai
Open source: Making connections by Sunny PaiHawaii Library Association
 
Go open2010 sde_20100417
Go open2010 sde_20100417Go open2010 sde_20100417
Go open2010 sde_20100417Sandro D'Elia
 

More Related Content

Viewers also liked

Master template5
Master template5Master template5
Master template5Theogus
 
Colonel转码集群
Colonel转码集群Colonel转码集群
Colonel转码集群pluschen
 
Tricare Health Matters
Tricare Health MattersTricare Health Matters
Tricare Health MattersUSSOCOM
 
Weatherchem What We Are All About
Weatherchem What We Are All AboutWeatherchem What We Are All About
Weatherchem What We Are All Aboutfrolovalevi
 
Ricardo sarmiento busqueda_portafolio
Ricardo sarmiento busqueda_portafolioRicardo sarmiento busqueda_portafolio
Ricardo sarmiento busqueda_portafoliochisnet
 
TIPS for Managing Tech and Workflow Changes in Libraries
TIPS for Managing Tech and Workflow Changes in LibrariesTIPS for Managing Tech and Workflow Changes in Libraries
TIPS for Managing Tech and Workflow Changes in LibrariesColleen Harris
 

Viewers also liked (11)

Master template5
Master template5Master template5
Master template5
 
Politik Uang dan Pemilu 2009: Catatan kritis untuk jurnalis
Politik Uang dan Pemilu 2009: Catatan kritis untuk jurnalisPolitik Uang dan Pemilu 2009: Catatan kritis untuk jurnalis
Politik Uang dan Pemilu 2009: Catatan kritis untuk jurnalis
 
OWF2013 INTERNET OF THINGS
OWF2013 INTERNET OF THINGSOWF2013 INTERNET OF THINGS
OWF2013 INTERNET OF THINGS
 
Life after sun solaris death - open dj - fossa2011
Life after sun solaris death - open dj - fossa2011Life after sun solaris death - open dj - fossa2011
Life after sun solaris death - open dj - fossa2011
 
Analysis and usage of forges - fossa2010
Analysis and usage of forges - fossa2010Analysis and usage of forges - fossa2010
Analysis and usage of forges - fossa2010
 
HASNAINN
HASNAINNHASNAINN
HASNAINN
 
Colonel转码集群
Colonel转码集群Colonel转码集群
Colonel转码集群
 
Tricare Health Matters
Tricare Health MattersTricare Health Matters
Tricare Health Matters
 
Weatherchem What We Are All About
Weatherchem What We Are All AboutWeatherchem What We Are All About
Weatherchem What We Are All About
 
Ricardo sarmiento busqueda_portafolio
Ricardo sarmiento busqueda_portafolioRicardo sarmiento busqueda_portafolio
Ricardo sarmiento busqueda_portafolio
 
TIPS for Managing Tech and Workflow Changes in Libraries
TIPS for Managing Tech and Workflow Changes in LibrariesTIPS for Managing Tech and Workflow Changes in Libraries
TIPS for Managing Tech and Workflow Changes in Libraries
 

Similar to HP Fossology v5.3

Open Source Governance v2.5
Open Source Governance v2.5Open Source Governance v2.5
Open Source Governance v2.5Inria
 
Open Source Governance at HP
Open Source Governance at HPOpen Source Governance at HP
Open Source Governance at HPBruno Cornec
 
GoOpen 2010: Sandro D'Elia
GoOpen 2010: Sandro D'EliaGoOpen 2010: Sandro D'Elia
GoOpen 2010: Sandro D'EliaFriprogsenteret
 
Fundamentals of Free and Open Source Software
Fundamentals of Free and Open Source SoftwareFundamentals of Free and Open Source Software
Fundamentals of Free and Open Source SoftwareRoss Gardler
 
Intro to FOSS
Intro to FOSSIntro to FOSS
Intro to FOSSmgamal87
 
Introduction to FOSS
Introduction to FOSSIntroduction to FOSS
Introduction to FOSSmgamal87
 
open source technology
open source technologyopen source technology
open source technologyLila Ram Yadav
 
Go open2010 sde_20100417
Go open2010 sde_20100417Go open2010 sde_20100417
Go open2010 sde_20100417Sandro D'Elia
 
OpenHPC: A Comprehensive System Software Stack
OpenHPC: A Comprehensive System Software StackOpenHPC: A Comprehensive System Software Stack
OpenHPC: A Comprehensive System Software Stackinside-BigData.com
 
An Open Source Workshop
An Open Source WorkshopAn Open Source Workshop
An Open Source Workshophalehmahbod
 
Open source softwares, 2011
Open source softwares, 2011Open source softwares, 2011
Open source softwares, 2011Florent Renucci
 

Similar to HP Fossology v5.3 (20)

Open Source Governance v2.5
Open Source Governance v2.5Open Source Governance v2.5
Open Source Governance v2.5
 
Methods about Open Source Governance v2.5
Methods about Open Source Governance v2.5Methods about Open Source Governance v2.5
Methods about Open Source Governance v2.5
 
Open Source Governance at HP
Open Source Governance at HPOpen Source Governance at HP
Open Source Governance at HP
 
GoOpen 2010: Sandro D'Elia
GoOpen 2010: Sandro D'EliaGoOpen 2010: Sandro D'Elia
GoOpen 2010: Sandro D'Elia
 
Fundamentals of Free and Open Source Software
Fundamentals of Free and Open Source SoftwareFundamentals of Free and Open Source Software
Fundamentals of Free and Open Source Software
 
Intro to FOSS
Intro to FOSSIntro to FOSS
Intro to FOSS
 
Introduction to FOSS
Introduction to FOSSIntroduction to FOSS
Introduction to FOSS
 
Coursework
CourseworkCoursework
Coursework
 
open source technology
open source technologyopen source technology
open source technology
 
Open source: Making connections by Sunny Pai
Open source: Making connections by Sunny PaiOpen source: Making connections by Sunny Pai
Open source: Making connections by Sunny Pai
 
Go open2010 sde_20100417
Go open2010 sde_20100417Go open2010 sde_20100417
Go open2010 sde_20100417
 
opensource.ppt
opensource.pptopensource.ppt
opensource.ppt
 
Prasoon
PrasoonPrasoon
Prasoon
 
ROS Overview - Málaga 2012
ROS Overview - Málaga 2012ROS Overview - Málaga 2012
ROS Overview - Málaga 2012
 
FOSS in Education
FOSS in EducationFOSS in Education
FOSS in Education
 
OpenHPC: A Comprehensive System Software Stack
OpenHPC: A Comprehensive System Software StackOpenHPC: A Comprehensive System Software Stack
OpenHPC: A Comprehensive System Software Stack
 
Android for the Enterprise and OEMs
Android for the Enterprise and OEMsAndroid for the Enterprise and OEMs
Android for the Enterprise and OEMs
 
Open Source in the Enterprise
Open Source in the EnterpriseOpen Source in the Enterprise
Open Source in the Enterprise
 
An Open Source Workshop
An Open Source WorkshopAn Open Source Workshop
An Open Source Workshop
 
Open source softwares, 2011
Open source softwares, 2011Open source softwares, 2011
Open source softwares, 2011
 

More from fOSSa - Free Open Source Software Academia Conference

More from fOSSa - Free Open Source Software Academia Conference (20)

Les douze commandements du community manager
Les douze commandements du community managerLes douze commandements du community manager
Les douze commandements du community manager
 
Les licences open source simplement ?
Les licences open source simplement ? Les licences open source simplement ?
Les licences open source simplement ?
 
Diffuser les résultats de recherche ?
Diffuser les résultats de recherche ? Diffuser les résultats de recherche ?
Diffuser les résultats de recherche ?
 
- Protection du logiciel - **François Pelligrini**
- Protection du logiciel - **François Pelligrini** - Protection du logiciel - **François Pelligrini**
- Protection du logiciel - **François Pelligrini**
 
La valorisation de logiciels de recherche au sein de l'Inria? / Transfert ma...
La valorisation de logiciels de recherche au sein de l'Inria? / Transfert ma...La valorisation de logiciels de recherche au sein de l'Inria? / Transfert ma...
La valorisation de logiciels de recherche au sein de l'Inria? / Transfert ma...
 
Resultats nuit info 2013
Resultats nuit info 2013Resultats nuit info 2013
Resultats nuit info 2013
 
In trust we trust ! Blablacar by frederic mazzella
In trust we trust ! Blablacar by frederic mazzellaIn trust we trust ! Blablacar by frederic mazzella
In trust we trust ! Blablacar by frederic mazzella
 
Open sourcing of Journalism by James Corbett
Open sourcing of Journalism by James CorbettOpen sourcing of Journalism by James Corbett
Open sourcing of Journalism by James Corbett
 
Open intelligence by tom secker
Open intelligence by tom seckerOpen intelligence by tom secker
Open intelligence by tom secker
 
Eco Nomy Eco Trust Eco Systems - Introduction
Eco Nomy Eco Trust Eco Systems - IntroductionEco Nomy Eco Trust Eco Systems - Introduction
Eco Nomy Eco Trust Eco Systems - Introduction
 
Innovation & Massive data
Innovation & Massive dataInnovation & Massive data
Innovation & Massive data
 
#SAIFC késako - Semantic Analysis for Flow Computing
#SAIFC késako - Semantic Analysis for Flow Computing #SAIFC késako - Semantic Analysis for Flow Computing
#SAIFC késako - Semantic Analysis for Flow Computing
 
Eco System over code!
Eco System over code!Eco System over code!
Eco System over code!
 
Afup 10 ans plus tard
Afup 10 ans plus tardAfup 10 ans plus tard
Afup 10 ans plus tard
 
Analyse de la propriete intellectuel
Analyse de la propriete intellectuelAnalyse de la propriete intellectuel
Analyse de la propriete intellectuel
 
From open source labs to ceo methods and advice by sysfera
From open source labs to ceo methods and advice by sysferaFrom open source labs to ceo methods and advice by sysfera
From open source labs to ceo methods and advice by sysfera
 
Management de communaute
Management de communauteManagement de communaute
Management de communaute
 
Systematic / GTLL / Ecosystemes logiciel-libre in PARIS region
Systematic / GTLL / Ecosystemes logiciel-libre in PARIS regionSystematic / GTLL / Ecosystemes logiciel-libre in PARIS region
Systematic / GTLL / Ecosystemes logiciel-libre in PARIS region
 
Choir and Community Management
Choir and Community ManagementChoir and Community Management
Choir and Community Management
 
Diffusion des developpements informatiques
Diffusion des developpements informatiquesDiffusion des developpements informatiques
Diffusion des developpements informatiques
 

Recently uploaded

08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking MenDelhi Call girls
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Alan Dix
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...gurkirankumar98700
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGGoogle AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGSujit Pal
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 

Recently uploaded (20)

08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...Swan(sea) Song – personal research during my six years at Swansea ... and bey...
Swan(sea) Song – personal research during my six years at Swansea ... and bey...
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
Kalyanpur ) Call Girls in Lucknow Finest Escorts Service 🍸 8923113531 🎰 Avail...
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAGGoogle AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAG
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 

HP Fossology v5.3

  • 1. Bruno Cornec HP, EMEA Open Source Profession Lead The FOSSology project September 2013 Version 5.3
  • 2. Introducing Myself ● Software engineering and Unices since 1988 ● Mostly Configuration Management Systems (CMS), Build systems, quality tools, on multiple commercial Unix systems ● Discover Open Source & Linux (OSL) & first contributions in 1993 ● Full time on OSL since 1995, first as HP reseller then @HP ● Currently: ● Master Technology Architect on OSL for the HP/Intel Solution Center, Grenoble ● OSL HP Advocate ● EMEA OSL HP Profession Lead ● Solutions Linux Conference and OWF board member ● MondoRescue, Dploy.org, Project-Builder.org project lead ● LinuxCOE, mrepo, tellico, rinse, fossology, collectl contributor ● FOSSBazaar and OSL Governance enthusiast ● Mandriva, Mageia, Fedora packager
  • 3. FOSSology.org FOSSology's etymology: ΦΟΣΣ: Free Open Source Software λογος: science, study So FOSSology == FOSS study
  • 4. Goal The goal of the FOSSology project is to create tools and a framework to reduce fear, uncertainty, and doubt in the use, development, and distribution of FOSS. FOSSology is a static analysis framework to learn what we can by scanning FOSS itself. Analyze the code, save the results in a database, report results through a Web (or scripted) interface. Focus now on License Management
  • 5. FOSSology & the Linux Foundation
  • 6. License Discovery Scan every single file in a tar file (or package, or ISO, distro or …) Fuzzy match against a library of > 400+ known licenses. Examine the non-matching portions looking for text that could be an unknown license. Nomos, the now GPLed license analysis tool, is the result of 10+ years of scanning @HP
  • 14. Requirements - Linux System - Apache Web Server 2.x - PHP 5.x - PostgreSQL > 8.3 - Some libraries (libmagic, libxml2, libextractor) - Some commands (ar, bzcat, cabextract, fls cpio, dpkg, icat, isoinfo, pdftotext, rpm, rpm2cpio, tar, upx- ucl, unrar, unzip, wget, zcat) - Disk Space - CPU resources
  • 21. What's new in fossology 2.x 2.0 Announced Jun 7, 2012 : Restructure, few new features. New more robust batch scheduler (redesigned) More modularity in code (ease contributions for agents and allow module release independantly). Improved tags management, code documentation, testing Scan logs independant from scheduler logs. UI viewable Future 2.x: - SPDX support http://spdx.org/ The goal of this specification is to enable companies and organizations to share license and component information (metadata) for software package and related content with the aim of facilitating license and other policy compliance. - Binary analysis - Dependency analysis
  • 23. Other uses for FOSSology o Copyright geneology o Trademark search o Vulnerability tracking o Dependency graphs o Distro, package, file diffs o Localization reports o Code Plagiarism o Vulnerability tracking o ? o Your input here An Open Source project. => Contributions are encouraged.
  • 24. Public repository Availability as of August 2012, 30 of a public FOSSology instance, hosted by the University of Nebraska, Omaha as part of their UNO project. FOSSology 2.0 Ubuntu 10.04.4 LTS 2GB RAM 50GB HD (92% free) 1x Intel Xeon 2.8 GHz w/ 128K cache https://fossology.ist.unomaha.edu/ Contact: Matt Germonprez "Now freely available to open source projects, corporate users, and academic institutions that wish to analyze open source software for licensing and copyright, as well as educate students on these important issues.“ Also working on an SPDX 1.1 agent
  • 25. 06/09/13 29 FLOSS Governance Workshop Open Source Baseline Business Drivers Various open source touch points in your company Awareness, responsibilities , risks, processes Legal Aspects of Open Source Governance Assessment of Free and Open source software phenomenon Detailed discussion of Open Source Licenses Bridging the legal and technical communities Other considerations: WEB-based services, mergers and acquisitions, other Automating Open Source Compliance Open Source discovery License detection and analysis Open Source Policy Best Practices Use of open source – when appropriate, when not appropriate for your business Review of licenses, product distribution considerations Considerations for employee contribution to open source community Company relationship with community Open Source Governance Processes Best practices for open source tracking, review and management Open Source Compliance Lifecycle, workflow Building Internal Open Source Communities Workshop designed to guide through the top issues around management of Open Source in the enterprise. Targeted at a cross-organizational audience, including auditing, legal, procurement, operational risk management, technology strategy, and line-of-business departments
  • 26. “The evolution of FLOSS and the Internet are tightly coupled” Web Resources FOSSOlogy http://www.fossology.org Mailing Lists, contacts http://fossology.org/contact_us fossology@fossology.org IRC #fossology on irc.oftc.net :6667 Public FOSSOlogy instance https://fossology.ist.unomaha.edu/ Plume details http://www.projet-plume.org/fiche/fossology Project-Builder http://trac.project-builder.org Open Source at HP http://opensource.hp.com ProLiant & Linux http://www.hp.com/go/proliantlinux Linux Foundation Open Compliance Program http://www.linuxfoundation.org/programs/legal/compliance FOSSology users: HP, ALU, Siemens, INRIA, OW2
  • 27. ”Changes are never easy to make. There is comfort and safety in tradition, but change must come, no matter how painful or expensive it may be.” Bill Hewlett Bruno.Cornec@hp.com (Open Source and Linux Technology Architect at the HP/Intel Solution Center) http://www.hp.com/linux http://opensource.hp.com http://fossology.org Thanks goes to: Linus Torvalds, Richard Stallman, Eric Raymond, Nat Makarevitch, René Cougnenc, Eric Dumas, Rémy Card, Bdale Garbee, Bryan Gartner, Mary Laser, Gallig Renaud, Vincent Ma, Phil Robb, Bob Gobeille, Martin Michlmayr among others, for their work and devotion to the Open Source Software cause... and my family for their patience :-) Contact – Thanks - Questions