Customer

Hey!
Can you please help with a few questions about licensing our project?

Developing an open source license compliance project:
Our Trials, Tribulations and Achievements

Customer

Hey!
Can you please help with a few questions about licensing our project?
Yeah sure! What's the matter?

Linagora

Customer

We did use tools that you suggested, but...
It is still unclear whether there is a licensing problem.
Ok... Where's your struggling point?

Linagora

Customer

Well, our techs needs help from our lawyers and our lawyers don't have sufficient tech background to help out.
The report focuses on potential risks due to the use of open-source licenses, and is tech-lawyers or legal-techies oriented...

Thus not understandable by human beings.

Customer

The report focuses on potential risks due to the use of open-source licenses, and is tech-lawyers or legal-techies oriented...

Thus not understandable by human beings.

Customer

Hey!
Can you please help with a few questions about licensing our project?

Customer

Yeah sure! What's the matter?

Linagora

Customer

We did use tools that you suggested, but...
It is still unclear whether there is a licensing problem.
Ok... Where's your struggling point?

Linagora

Design a new tool which

Offers solutions, not foisting the issue on legal or tech

Provides CI/CD integration, so not disrupting the developers workflow

Produces a report for humans, not lawyers

Reports only actual non-compliances, not risks

Remember we are dealing with legal stuff...
It must yield ZERO false negatives!

(paranoid) Product Owner

Remember we are dealing with legal stuff...
It must yield ZERO false negatives!

(paranoid) Product Owner

Idea: powered this with

Structure analysis

Hierarchy tree computation

Fetch dependancies

Customer

Hum... Sorry to interrupt but

Customer 2

And what about?...

Customer 3

Oh! That too please

Idea: powered this with

Structure analysis

Hierarchy tree computation

Fetch dependancies

Re-arrange input scope

New task under heavy development

Idea: powered this with

Structure analysis

Hierarchy tree computation

Fetch dependancies

Gather as much information as possible about licenses and copyrights in all sub-folders and file headers.

Idea: powered this with concurent run of several tools like

What about non standardized data ?
We've already found out that regex are limited.
You better consider the use of Machine Learning!

(paranoid) Product Owner

What about non standardized data ?
We've already found out that regex are limited.
You better consider the use of Machine Learning!

(paranoid) Product Owner

New task under heavy development

  • Apache-2.0 (42%)
  • MIT (17%)
  • ​GPL-3.0-only (41%)
  • Apache-2.0 (78%)
  • MIT (8%)
  • ​GPL-3.0-only (14%)
  • Apache-2.0 (37%)
  • MIT (24%)
  • ​GPL-3.0-only (39%)
All Rights Reserved.
  • Copyright 2011-2015 Twitter, Inc.
  • Copyright 2013-2016 Cray Inc.
  • Copyright 2018 Chart.js Contributors
  • Copyright (C) 1984, 1989-1990, 2000-2015 Free Software Foundation, Inc.

Find out incompabilities based on the project architecture only.

Compare the list of incompatibilities with copyrights and origin to validate compliance in case of discrepancies. 

Task under heavy development

Customer

Does it manage export control?

Customer 2

Can it analyze Docker images?

Customer 3

We want to provides binary, is it supported?

TODOs:

Inputs handling

Adding a database

UI/UX enhancements

Addition of a usage form

Machine Learning:

- More data sets for training

- algorithm improvements

- use only this tools ?

Want to join ?

Contact us

Claire Bouttes

Main Developper

cbouttes@linagora.com

Ludovic Schurr

Head of Legal / Product Owner

lschurr@linagora.com

Raoul Delpech

Head of Run & Consulting Services

rdelpech@linagora.com

Pierre Marty

(Speaker) Project Manager

pmarty@linagora.com

Support:

Code:

LinCompliance

By Pierre Marty

LinCompliance

  • 195