Closed CsatariGergely closed 1 year ago
I am confused because there are multiple products AND multiple teams. If we ask about this topic, we might want to separate it out into two questions and then analyze it as one chart.
@LawrenceHecht correct. What I wanted to put there is if the software composition analyzis is done by a central SCM/DevOps team or by the product teams. Maybe this needs some rewording.
Similar question added in the 2022 version: https://github.com/todogroup/osposurvey/blob/main/2022/questions.md
A question should be added to “Part 7: Licensing, Compliance and Repos" about the place of open source compliance check in the organisation: