Maybe it’s just me, but it seems like Marty McFly somehow stole 2017 because it’s almost over and I’m sure it was only yesterday that we shared what Endocode achieved in 2016. Yet somehow, here we are and a lot has happened in 2017. We continued to shape our concept of life-long learning in tech in the Endoctus Academy, and started a new initiative to improve the overall state of FOSS compliance.
Auditing and documenting Open Source license compliance is a strict requirement for any software vendor or device manufacturer. Open Source licenses commonly require products to be accompanied with offers to provide the full corresponding source code, authors to be attributed, and other documentation. In addition to that, Open Source license compliance needs to be audited continuously, for each build, along the complete supply chain of the product. These challenges are various and well known in the IT industry.
Endocode usually supports companies that already work in a DevOps mode or are at least planning to do so. The automotive industry is different. Companies active in this sector have a long history in designing & building hardware as well as software - which is what they are really good in. Buzzwordy topics like DevOps, CI/CD and others are not something they really care about. But things tend to change.
Today was announced that with version OpenShift 3.6, Project Calico is fully supported as a network solution. Endocode and idealo Internet GmbH contributed to this integration. We started a project in mid of April in which we would use RedHat OpenShift Origin with Project Calico on BareMetal as the solution to move internal applications to a container based infrastructure. At this point in time the integration of Project Calico into the RedHat OpenShift-Ansible installer was in its early stages.
As of today, Endocode joins the community of OpenChain conformant organisations. Being Open Source license compliant is a hygiene factor that everybody who uses Open Source technologies needs to constantly maintain. It is one aspect of being a good citizen of the Open Source world. However, maintaining compliance throughout the supply chain of a complex product that may include incoming external contributions is not trivial. The OpenChain project aims at making Open Source license compliance simpler and more consistent.