Artwork_ActiveState - Aug 4 - Modernizing Open Source
Common Sense Virtual Roundtable:

Modernizing Open Source
Supply Chain Management

September 22nd, 1 PM – 2 PM CT, Successfully held

Request Detailed Session Notes

We are careful about who we send this key document to. The session notes will be sent based on the request, provided your profile matches our qualification criteria.

Presented by

Active State Logo

Here’s what we discussed:

The software industry’s widespread adoption of open source software has resulted in the continuous reuse of open source libraries to gain specific functionality. Because these libraries are now dependencies of the commercial software, DevOps must continuously track and manage them to ensure that their projects build successfully without introducing known vulnerabilities — increasing operational costs and time to market.

What strategies are DevOps leaders using to reduce the risk and cost of securing software supply chains while ensuring the security and integrity of the products and services their dev teams create? Building, monitoring, maintaining, remediating and packaging open source dependencies into dev, test and production runtime environments can burn a lot of productive dev hours; how are companies managing this?
In this session, we discussed the pros and cons of dependency management strategies, including dependency vendoring, as well as more modern approaches to automating or outsourcing this work.

Solution Expert

Loreli-Cadapan_347x347
VP Product Management, ActiveState
LinkedIn

Here is what we learned:

Vijish Vijayan, Manager, DevOps, Indigo

• Vijish joined the session to learn something new about security.
• Open source is not a problem for Indigo yet.
• In a past life, Vijish was with a company that had difficulty with open source.
• Government employees are stuck in C++ when everyone else is moving to the cloud. They educated their lawyers so they could educate the auditors. That way the auditors don’t need to listen to the C-suite because they have input from the lawyers.

Swati Thakur, Director, DevOps and Release management, Tangerine

• Swati joined the session to learn more about security as cyber crimes are on the rise.
• Open-source tools are great because you don’t have to re-invent the wheel. But once you introduce something to the pipeline, it’s hard to remove.
• From experience, once you use open source, you buy into their support.
• As a bank they have to be ahead of market. Also, audits are not moving as fast as the business does.
• In tech space, if you want to retain people, you can’t have them work solely on documentation. They have to work on cool stuff.
• Cloud standards globally should be revised.

Request detailed session notes

We are careful about who we send this key document to. The session notes will be sent based on the request, provided your profile matches our qualification criteria.

About ActiveState:

With ActiveState, developers can develop applications faster as they focus on writing code, not building runtimes. And enterprises can secure their open source supply chain while meeting compliance and reducing management costs.

ActiveState, provides enterprise grade programming language distributions backed with cross-platform consistency, commercial technical support, security reviews, license reviews, and indemnification. Our products and services directly address the challenges faced by enterprises trying to manage the risks and complexities of large scale open source language implementations.

Participation in the Virtual Roundtable is free of charge to qualified attendees. Once you’ve completed the registration, we’ll confirm your invitation and send you a calendar invite with a link to the meeting.

If you don’t qualify, we’ll suggest other learning events that may be a better fit for you.

Talk To Us About Attending Future Events











    This site is protected by Invisible reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

    Here’s what attendees at past events have said:

    Other active events

    Receive Upcoming Event Notifications
    Find out about upcoming events you or your team may want to attend.
    SUBMIT
    By hitting submit, you agree to receive important updates from Common Sense.