Defining the Limits of Risk in Open Source Supply Chains

Explore community-metrics-related risks in open source software supply chains through this 25-minute conference talk by Daniel Izquierdo from Bitergia. Delve into the often-overlooked aspects of community sustainability and its impact on software dependencies. Examine existing threats when measuring communities and learn about the concept of "Countering Community Threats" in relation to Software Bill of Materials (SBoM) dependencies. Gain insights into initiatives by the Linux Foundation and other organizations aimed at mitigating sustainability issues in open source projects. Broaden your understanding of supply chain risks beyond source code-related aspects and participate in an important discussion on defining the limits of risk in open source ecosystems.