How GitHub maintains compliance for open source dependencies
Explore how the Open Source Program Office uses GitHub’s new license compliance product to manage open source dependencies at scale.
Eric is a product manager at GitHub, focused on supply chain security. He’s been working on open source at scale for a couple of decades, first as an SRE and more recently as a PM. For a thrilling conversation, ask him about Software Bill of Materials data formats, SPDX license expressions, or transitive package dependencies! Outside of tech, Eric does live audio and lighting for heavy metal concerts and enjoys getting muddy on his gravel bike.
Explore how the Open Source Program Office uses GitHub’s new license compliance product to manage open source dependencies at scale.
Help quantify the state of enterprise open source by taking the 2023 OSPO survey.