Add a question about the place of open source compliance check in the organisation

todogroup / osposurvey

Open Source Programs (OSPO) Survey

https://todogroup.org

Creative Commons Attribution Share Alike 4.0 International

70 stars 26 forks source link

Add a question about the place of open source compliance check in the organisation #101

Closed CsatariGergely closed 1 year ago

CsatariGergely commented 2 years ago

A question should be added to “Part 7: Licensing, Compliance and Repos" about the place of open source compliance check in the organisation:

Q?: In case your company has several products, are the software component analyzis of the different products is done in a central place or by the product teams separately?
- In a central team
- Separately by every product
- Parts are in every product, parts in a central team

LawrenceHecht commented 2 years ago

I am confused because there are multiple products AND multiple teams. If we ask about this topic, we might want to separate it out into two questions and then analyze it as one chart.

CsatariGergely commented 2 years ago

@LawrenceHecht correct. What I wanted to put there is if the software composition analyzis is done by a central SCM/DevOps team or by the product teams. Maybe this needs some rewording.

anajsana commented 1 year ago

Similar question added in the 2022 version: https://github.com/todogroup/osposurvey/blob/main/2022/questions.md