DEBATE: Does Careful Inventory of Licensing Bill of Materials Have Real Impact on FOSS License Compliance?

DEBATE: Does Careful Inventory of Licensing Bill of Materials Have Real Impact on FOSS License Compliance?

FOSDEM 2020

Projects today often have thousands of FOSS dependencies. Since risk flows downstream in the supply chain; projects inherit and pass on the risks of all their dependencies. In response, licensing bill of materials tools often seek to push well-formed licensing inventory data upstream in an effort to ease downstream compliance challenges. At the same time, there has been a stark increase in license violations, especially, though not exclusively, on copyleft licenses. Is this approach to improving compliance working?

Affirmative position: Compliance at scale through tool-driven assembly of bills of materials is essential for FOSS

1. First Affirmative Constructive (1AC) = 7 minutes a. Cross-examination of First Affirmative by Second Negative = 3 minutes
2. First Negative Constructive (1NC) = 7 minutes a. Cross-examination of First Negative by First Affirmative = 3 minutes
3. Second Affirmative Constructive (2AC) = 7 minutes a. Cross-examination of Second Affirmative by First Negative = 3 minutes
4. Second Negative Constructive (2NC) = 7 minutes a. Cross-examination of Second Negative by Second Affirmative = 3 minutes
5. First Negative Rebuttal (1NR) = 3 minutes
6. First Affirmative Rebuttal (1AR) = 3 minutes
7. Second Negative Rebuttal (2NR) = 3 minutes
8. Second Affirmative Rebuttal (2AR) = 3 minutes

Speakers: Bradley M. Kuhn Carol Smith Jeff McAffer