March 12-14, 2019 - Half Moon Bay, CA
Click Here For Information
Back To Schedule
Thursday, March 14 • 9:40am - 10:10am
Source Code License Forensics: The Yocto Project and SPDX - Kate Stewart & Richard Purdie, The Linux Foundation

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
The Yocto Project’s build environment is uniquely placed to allow tracing from input individual source files all the way to the output binaries. This gives rise to under recognised and underutilized possibilities for analysing the license situation from both end user company and overall ecosystem perspectives.

Working together with SPDX the system can generate accurate Software Bill of Materials, show areas of potentially problematic license interaction and allow the licensing of the overall Linux ecosystem to be visualized as well.

This talk will explore how things stand today, where these capabilities can lead in the future and the challenges facing the Yocto Project, SPDX and the overall Linux software stack.


Richard Purdie

Yocto Project Architect, Yocto Project
Richard Purdie is the lead Architect of the Yocto Project, a Linux Foundation Fellow, maintainer for OpenEmbedded-Core and BitBake and has an extensive background in customised Linux solutions in many different industry sectors. His experience includes time in small startups like... Read More →
avatar for Kate Stewart

Kate Stewart

Senior Director of Strategic Programs, Linux Foundation
Kate Stewart is a Senior Director of Strategic Programs, responsible for Embedded and Open Compliance programs. Since joining The Linux Foundation, she has launched Real-Time Linux, Zephyr Project, CHAOSS, and ELISA.

Thursday March 14, 2019 9:40am - 10:10am
Salon 3