Secure usage of FOSS and 3PP

Important results from the project

The project´s objective has been to create a framework in aim to coordinate FOSS meta data collection with automation. Functionality that can download FOSS with integrity has been developed. The framework allows input from a growing number of available analysis tools, commercial as well as potentially proprietary. In addition to the set goals, the ability to preserve data points in a way that creates an independency to external data format was also achieved. Softsense Framework is integrated into the companies´ SW supply chain, which are adapted to each company´s development flows.

Expected long term effects

Automation of download and analysis is created which significantly increases the development rate of SW project compared to not having this framework available. We can state that with the introduction of automation and increased security, we can shift the focus of SW developers to work with the current problem solution instead of the manual FOSS management. The ability to find factors that increase awareness of the use of FOSS is made available for a range of roles involved in industrial systems and project development. Among these construction managers, developers and CM.

Approach and implementation

The project has been implemented by creating a dedicated development team, staffed by both companies and with a common project manager. Weekly meetings with representatives of end users have ensured that objective, priorities and solutions are formed in a way that is adequate for the context. The collaborative project has been saturated with communication, competence-enhancing measures and frequent end-user tests. The cooperation between the companies has excelled and created further areas of cooperation, such as in "continuous learning".