Linux Foundation Newsletter: October 2023
The Linux Foundation | 19 October 2023
This month’s newsletter will be one of our biggest ever! In October, our communities met in person at the Open Source Summit Europe in Bilbao and KubeCon + CloudNativeCon + OSS in Shanghai, China. At OpenSSF’s Secure Open Source Summit in Washington, DC, we continued advancing important conversations to improve the security of software supply chains. We had a record month at LF Research, with four new reports published since our last newsletter on brand new topics, including the mobile industry and Europe’s public sector, and year-over-year trends specific to European open source and the state of the OSPO. And, of course, there’s lots of project news for you to catch up on, including the announcement of OpenPubkey, a zero-trust passwordless authentication system for Docker.
- New blog: How open source foundations protect the licensing integrity of open source projects
- October event recaps
- Training & certification deals
- LF Research
- Upcoming events
- LFX Mentorship
- Diversity, equity, and inclusion
- Linux Foundation project news and updates
- LF in the media
- Follow us
New blog: How open source foundations protect the licensing integrity of open source projects
What if the Linux kernel switched its license to a Business Source License (BUSL)? A recent blog post by Mike Dolan, SVP of Projects at the Linux Foundation, explores this hypothetical scenario to emphasize the critical role of open source foundations as stewards of license continuity. The article highlights how foundations like the LF, as neutral, openly governed collaboration hubs, mitigate license change risk and preserve the integrity of open source projects.
October event recaps
Open Source Summit Europe 2023 (Bilbao, Spain)
Futurewei's Wenjing Chu enjoys a moment at the OSSEU attendee reception at San Mamés stadium in Bilbao
- Open Source Summit Europe kicked off with several mini summits, such as the CD Mini Summit, Open Wallet Mini Summit, Node.js Collaborator Summit, OpenSSF Day Europe, the Linux Foundation Europe Member Summit, ONE Summit regional day, LLM Avalanche Bilbao, Confidential Computing Mini Summit, SPDX mini summit and more. These gatherings allowed participants to dive deeper into specific open source topics and collaborate with experts in the field.
- The official program commenced with opening remarks from Gabriele Columbro, Executive Director of FINOS and General Manager of Linux Foundation Europe. He discussed Linux Foundation Europe's journey since its launch a year ago, delved into hot topics like the Cyber Resilience Act, unveiled the World of Open Source Europe Spotlight 2023 and Europe's Public Sector Opportunity reports from LF Research and highlighted OpenWallet Foundation's role in uniting the private and public sectors.
Ola Ben Har, Global Head of Developer Relations, Google Pay and Wallet & Marie Austenaa, Head of Digital Identity, Visa
- Xinwei Hu, Technical Committee Chair openEuler Community, introduced openEuler, an open source operating system designed for intelligent and diversified computing. The platform supports various hardware and applications, including AI and ERP. It aims to improve computing power utilization and reduce waste, particularly in data centers. openEuler is innovating in areas like memory management and scheduling and is integrating AI for system management through a feature called "openEuler Copilot." The community has grown from 311 to nearly 4,000 daily active developers in three years, and the OS is already deployed in real-world scenarios.
- Ola Ben Har, Global Head of Developer Relations, Google Pay and Wallet & Marie Austenaa, Head of Digital Identity, Visa: This fireside chat focused on the evolving role of digital wallets, emphasizing that wallets are more than just storage; they're an ecosystem for consumer interaction with the digital world. Open source and standards are crucial for this ecosystem's security, privacy, and interoperability. The discussion underscored the importance of making digital wallets secure, user-friendly, and universally accessible.
- Dave Lago, Software Development Manager, Amazon Web Services (AWS, discussed the complexities of making security processes transparent. OpenSearch, an open source analytics suite derived from Elasticsearch and Kibana, faced challenges adapting AWS's internal security measures for the open source community. To address this, they implemented a vulnerability disclosure process in collaboration with the community and opened internal security reviews. They also committed to following OpenSSF's best practices for vulnerability remediation.
- Jonathan Vila, Developer Advocate, Sonar, emphasized the high cost of poor quality code, stating it costs the USA over $2 trillion, with $600 billion spent on fixing bugs alone. He outlined four attributes of clean code: consistency, intentionality, efficiency, and adaptability. Vila advocated using plugins like SonarLint to check code in real time, helping developers learn as they code. He also stressed focusing on new code rather than old, using quality gates to ensure only clean code gets merged. Lastly, he highlighted the role of clean code in over 87,000 open source projects, including major foundations and companies.
- Bryan Che, Chief Strategy Officer, Huawei, addressed the complexities surrounding the term "open" in the tech industry. He emphasized that for Huawei, "open" means using certified open source licenses for software. Che also discussed the importance of open governance, citing Huawei's collaboration with the Cloud Native Computing Foundation as an example. He argued that open source should create business opportunities for all, not just for the company that releases the technology. Lastly, Che stressed the need for open participation from large corporations and individual contributors to maintain a truly open ecosystem.
- Nithya Ruff, Director, OSPO, Amazon outlined the evolving landscape of OSPOs in 2023. She highlighted the mainstream adoption of open source and discussed key challenges such as the rise of ambiguous "open-ish" licenses and the complexities introduced by AI. Ruff emphasized the need for collaboration across the open source supply chain to address security concerns and called for seamless open source integration into development workflows. She also advocated for educational efforts to help policymakers understand open source, facilitating effective regulation.
- Jim Zemlin, Executive Director of the Linux Foundation, provided insights into the thriving state of open source. He emphasized the values of humility, helpfulness, and hopefulness, highlighting how open source is flourishing despite recent license changes in certain projects. Zemlin addressed concerns about open source language models and AI. He emphasized the importance of resisting the calls to regulate or restrict these technologies, stressing that open source fosters collaboration, democratization, and creativity while also allowing for addressing ethical concerns.
- Vivek Mahajan Corporate Executive Officer, SEVP, CTO, CPO, Co-Head of System Platform, Fujitsu Ltd, discussed Fujitsu's focus on creating sustainable value through open source projects, such as their groundbreaking two-nanometer chip (Fujitsu Monaka), their efforts in the Web 3.0 space, and their AI platform (Fujitsu Kozuchi).
- The Sovereign Tech Fund: Investing in Open Source Infrastructure in the Public Interest - Fiona Krakenbürger, Co-Founder & Tara Tarakiyee, Technologist, Sovereign Tech Fund: Fiona explained the mission and approach to strengthening digital infrastructure and open source ecosystems in the public interest, highlighting the importance of supporting and investing in open source infrastructure projects that are often overlooked and underfunded.
- Cristina Bentué, Co-founder and COO, IriusRisk: In this compelling and insightful talk, Cristina challenged the conventional approach to cybersecurity in the software industry. She underscores the importance of integrating security as a fundamental design element from the inception of a software project rather than treating it as an afterthought.
- Jonathan Katz, Principal Product Manager - Technical, Amazon Web Services: Jonathan highlighted AWS's broader contributions to PostgreSQL beyond the core database software.
- Patrick von Platen, Diffusers Team Lead, Hugging Face Open Source: Patrick explained the challenges of the conventional "DRY" (Don't Repeat Yourself) principle in machine learning software libraries, specifically focusing on the open source Transformers library.
- Fatima Sarah Khalid, Developer Evangelist, GitLab, emphasized the importance of embracing allyship as an integral part of one's identity and the potential for positive change in our communities by choosing to be allies.
Sessions included discussions on various technical topics, such as Kubernetes, open source communities, and best practices. The day also featured Ask the Expert Sessions, where participants had the opportunity to engage with industry leaders and gain insights into their areas of expertise.
Beyond the stimulating sessions, attendees enjoyed visiting San Mamés Stadium, which offered a unique glimpse into local Basque culture and history. The stadium is an architectural marvel, winning first prize at the World Architecture Festival for its distinctive design.
Throughout the summit, attendees had the chance to network, engage in lively discussions, and gain valuable insights into the world of open source technology. We thank all who joined us in Bilbao for an unforgettable experience.
Amidst the conference sessions, hallway tracks, San Memés stadium, and Guggenheim museum tours, OSSEU participants were given a sobering reminder of current threats to open source. The CRA is approaching the plenary vote in the EU parliament, and time is running out. As we asked our community in Bilbao, we reiterate to everyone in this month’s newsletter: Please join our campaign to help #FixTheCRA by contacting industry leaders and policymakers to raise your concerns. The time to act is NOW!
Catch up on the latest CRA-focused content, including from keynotes and panels at OSS EU and recently published blogs:
- Gabriele Columbro, GM of Linux Foundation Europe on CRA at the Open Source Summit, Keynote. Watch now
- The Impact of the CRA on the Open Source Ecosystem: Cheukting Ho from the Python Software Foundation, Mirko Boehm from the Linux Foundation Europe, Greg Kroah Hartman from The Linux Foundation, Laura Seay from Red Hat, Justin Colannino from GitHub, and Philip Robb from Ericsson. Watch now
- Blog: Will the Cyber Resilience Act help the European ICT sector compete?
- Blog: Open Source and the CRA: It Will Not Work
- Blog: Understanding the Cyber Resilience Act: What Everyone Involved in Open Source Development Should Know
LF Member Summit Europe
Attendees of the 2023 LF Member Summit in Bilbao watch Luka Mustafa's presentation on Protecting Wildlife with OpenCollar Running Zephyr OS
Linux Foundation Europe proudly hosted its first Annual Member Summit! This milestone event marked its inaugural year, bringing together LF Europe members for an unforgettable gathering. The summit served as a groundbreaking platform for fostering collaboration, open innovation, and strategic partnerships among individuals and organizations in the private and public sectors. Read the blog recapping the event, and watch the one-year recap video here.
KubeCon + CloudNativeCon + Open Source Summit China 2023 (Shanghai)
Chinese traditional drummers & percussionists playing at Open Source Summit China 2023 in Shanghai
KubeCon + CloudNativeCon + Open Source Summit China 2023 in Shanghai is a wrap! Thank you to all the attendees, speakers, and sponsors who joined us in Shanghai. Below are the key takeaways from the event keynotes hosted by Co-Chairs Kevin Wang and Fog Dong:
- Jim Zemlin, Executive Director of the Linux Foundation, gave a warm welcome and opening remarks.
- Keith Chan, Director of Strategic Planning, The Linux Foundation APAC: Cloud Native has become the underlying technology empowering different technologies, including AI, Edge, etc. Keith explored the possibility of Cloud Native + and what he saw in CNCF about this trend. He announced the Cloud Native Talent Development Program powered by CNCF & LFOSSA to help develop more Cloud Native talent in the industry.
- Qing Liu, Head of Cloud-Native Technology Team at the Agricultural Bank of China discussed managing and operating a cloud-native stack and shared ABC’s technical practices in achieving financial-grade cloud-native.
- Fog Dong, Senior Engineer, BentoM, explored the trajectory from using open source models to their successful deployment and scaling in the cloud, pinpointing the gaps along this pathway. Alongside shared the victories achieved and the lessons learned during this journey.
- Chris Aniszczyk, CTO of Cloud Native Computing Foundation, explored how China pushes the boundaries of cloud native technology, driven by a committed community of maintainers and contributors.
- Whitney Lee, Staff Technical Advocate, VMware & Viktor Farcic, Developer Advocate, Upbound, presented choices that an anthropomorphized app had to make as they tried to find their way to production.
- Kevin Wang, Lead of Cloud Native Open Source, Huawei, shared the key challenges of Huawei Mobile Services' evolution to cloud native, the practice of building a large-scale cloud native platform for Huawei Mobile Services, and the future prospects of the cloud native platform.
- Loubna Ben-Allal, Machine Learning Engineer, Hugging Face, explored the behind-the-scenes process of building and training large code models like StarCoder, a robust 15B Code Generation model trained across 80+ programming languages, while incorporating responsible AI practices.
- The event photos are now available on CNCF Flickr, and be sure to watch the keynote and breakout session recordings on the CNCF YouTube Channel.
- IstioCon China 2023 wrap-up: A quick recap of Istio at KubeCon + CloudNativeCon + Open Source Summit China in Shanghai is now available in English and Chinese.
Training & certification deals
Keep current with IT skills that can help you advance your technology career by saving 35% on security training and certification with HACK35 at checkout. Offer Ends October 24, 2023.Interested in reading our Training newsletter?
Click here to subscribe.
LF Research is excited to announce its latest report, A New Direction for the Mobile Industry: Making the Case for More Open and Transparent Mobile Software!
Our mobile phone industry is dominated by siloed companies that cause vendor lock-in, inflexible terms, higher costs, and ultimately stunted growth. This negatively impacts consumers, app developers, manufacturers, and regulators. This research report, sponsored by Futurewei and in partnership with numerous open source projects, features interviews from subject matter experts to understand the current state of the mobile industry, the challenges this industry faces, and how these challenges could be addressed by open sourcing the mobile technology stack. Critical to this shift are open standards, which provide cross-industry consensus for the development of the stack.
Read the full report by Gordon Graham:
New reports launched at Open Source Summit Europe in Bilbao
Europe Spotlight 2023: Exploring the State of European Open Source Innovation, Opportunities, and Challenges follows in the footsteps of its 2022 report, covering a wide range of topics and concerns relating to open source within Europe. Data was collected from the worldwide survey launched earlier this year and interviews with stakeholders in the European open source community. This report incorporates year-over-year comparisons with 2022 findings to understand the directional shifts in this ecosystem. Findings indicate that while the value of open source has increased in the last year, there is progress to be made in contributions, public sector perceptions, and SBOMs.
Read more about these findings and the challenges and opportunities for the region in the full report by Colin Eberhardt, Graham Odds, and Matthew Dunderdale of Scott Logic:
After taking an industry-wide view in our Europe Spotlight report, The European Public Sector Open Source Opportunity: Challenges and Recommendations for Europe’s Open Source Future zooms in on Europe’s public sector. This qualitative report examines the trends, challenges, and opportunities for OSS adoption in this sector. It emphasizes the need for a cultural shift for open source to reach its full potential in Europe. Synthesizing case studies and interviews with subject matter experts, the report identifies pathways to encourage greater public sector adoption, engagement, and participation.
Read more about the needs and recommendations for the sector in the full report by Cailean Osborne, Mirko Boehm, and Ana Jimenez Santamaria:
Once again, the TODO Group partnered with Linux Foundation Research to run its sixth annual study, with findings now available in The 2023 State of OSPOs and OSS Initiatives. This year’s survey found that as OSS use and contributions become more mainstream, the role of OSPOs and OSS initiatives is better understood. This translates to greater support for innovation, compliance, security, and growth in OSPO adoption and increased project sustainability. However, there are important financial and cultural concerns that may hinder growth.
Read more about these findings in the full report by Stephen Hendrick, Linux Foundation Research, and Ana Jimenez Santamaria, TODO Group:
Since our initial launch of the 2023 CNCF Annual Survey, we've corrected missing or misclassified projects in our incubating versus graduated lists as of the CNCF interactive landscape as of September 29, 2023. We thank community members for pointing out these discrepancies and reiterating that research is collaborative. s always, your feedback matters, so if you took the survey previously when it initially launched, we would be grateful if you would consider taking it again (and we will include responses only from the most recent of any duplicate IP addresses). You'll get a bonus e-learning course or certification exam discount code.
Thank you. We appreciate your helping us create insights to benefit all cloud native community members.
- PX4 Developer Summit, Oct 21–22, New Orleans
- The Linux Foundation Member Summit, Oct 24–26, Monterey
- Open Source in Finance Forum New York, Nov 1, New York
- AppDeveloperCon, Nov 6, Chicago
- ArgoCon, Nov 6, Chicago
- BackstageCon, Nov 6, Chicago
- CiliumCon, Nov 6, Chicago
- Cloud Native Telco Day, Nov 6, Chicago
- Cloud Native Wasm Day, Nov 6, Chicago
- Data on Kubernetes Day, Nov 6, Chicago
- DBaaS DevDay, Nov 6, Chicago
- EnvoyCon, Nov 6, Chicago
- Istio Day, Nov 6, Chicago
- KubeCon + CloudNativeCon North America, Nov 6–9, Chicago
- Kubernetes AI + HPC Day, Nov 6, Chicago
- Kubernetes on Edge Day, Nov 6, Chicago
- Multi-TenancyCon, Nov 6, Chicago
- Observability Day, Nov 6, Chicago
- OSPOlogy Live North America, Nov 6, Chicago
- RISC-V Summit, Nov 7–8, Santa Clara
- CHIPS Technology Update, Nov 9, San Francisco
- LFN Developer & Testing Forum, Nov 13–16, Budapest
- Linux Plumbers Conference, Nov 13–15, Richmond
- Linux Kernel Maintainer Summit, Nov 16, Richmond
To register (for in-person attendance or virtual), please view our full calendar of events here, and be sure to subscribe to our events newsletter. Check out our Flickr stream for photos of past events!
- Summer 2023 LFX Mentorships wrapped up. Projects include CNCF, GraphQL, Hyperledger, LF Networking, Linux Kernel, OpenHPC, Open Mainframe Project, and RISC-V. Browse to see our LFX Mentorship Program graduates.
- Open Mainframe Project welcomed eight mentees and recently kicked off a series of recap blogs and demos. Issac To, a King’s College London student, shares his experience with COBOL Check and Ashis Kumar Naik, summarizes his COBOL Programming Course mentorship, and demos his work in this webinar.
- Fall 2023 LFX Mentorships: LFX Mentorship Program site to check eligibility, browse, and apply.
- Watch the replay! Demystifying the Linux Kernel Security Process Mentor: Greg Kroah-Hartman, Kernel Maintainer & Fellow, The Linux Foundation
- Watch the replay! Linux Kernel Debugging Tricks of the Trade Mentor: Joel Fernandes, Staff Software Engineer, Google.
- Learn about the effort underway at the Linux Foundation and others in the Growing & Sustaining Open Source Projects track at the upcoming Linux Foundation Member Summit.
- The mainframe industry reliably powers over 70% of Fortune 500 companies. Through the Making our Strong Community Stronger initiative, mainframe industry leaders BMC Software, Broadcom Mainframe Software, IBM, and the Open Mainframe Project hosted a webinar on October 16 that provided overviews for available mentorships and current hiring programs. The event brought awareness to new opportunities as well as why it is important for inclusive hiring. Watch the video.
Diversity, equity, and inclusion
Christine Abernathy, Sr. Director of Open Source, F5, presents at OSPOCon at Open Source Summit Europe 2023Open Mainframe Project celebrated National Hispanic Heritage Month from September 15 to October 15 by spotlighting several project leaders and contributors. Get to know:
- Yarille Ortiz Kilborn, Senior Project Coordinator at the Linux Foundation, whose mother introduced her to mainframes at a young age and encouraged her to find her passions in technology;
- Fernando Rijo Cedeno, Senior Software Engineer at Broadcom and Open Mainframe Project Ambassador and contributor to Zowe, and his journey from the Dominican Republic; and
- Luciano Gimeno, LinuxONE Sales Manager of North & Latin America at IBM, was featured in this month’s “I am a Mainframer” podcast. He discusses how he embraced the continuous change in the mainframe world, the growth of Linux on mainframes, the challenges and joys of shifting roles, and more.
- Big Boost Mondays come to the Americas! On Monday, October 30th, Morgan Stanley will host the first meetup of the energizing #tech + #DEI event series, started in the UK by Zngly and Tech Gateway with the support of FINOS. Register here to kick off a great Open Source in Finance Forum week!
Linux Foundation project news and updates
Attendee wearing a spacesuit at GraphQLConf 2023 in San Francisco
On October 4, 2023, the Linux Foundation, BastionZero, and Docker announced the launch of OpenPubkey, an open source project aimed at enhancing security in the open source software ecosystem through zero-trust passwordless authentication. Developed as part of BastionZero's secure infrastructure, OpenPubkey allows users to bind cryptographic keys securely by transforming an OpenID Connect Identity Provider into a Certificate Authority. This integration enables Docker users to improve software supply chain security. The initiative aims to strengthen digital signatures, secure remote access, and enhance features like signed builds and code commits. Want to get involved? Check out OpenPubKey’s reference implementation GitHub repository and read the specification.
LF AI & Data / PyTorch Foundation
AI & Data
- Welcome new members: AWS, Intel, IBM, Ant Group, CloudGeometry, New Relic, and Fujitsu.
- LF AI & Data announces Generative AI Commons committee.
- DeepCausality, ShaderNN, and Recommenders join LF AI & Data as new Sandbox projects.
- OpenLineage project graduates and represents the culmination of two years of effort devoted to cultivating adoption, fostering partnerships in the ecosystem, collaborating on integrations, and following best practices in governance and security.
- A new post explores the role of Ontologies in Enabling AI Transparency.
- Recognizing Key Contributors in LF AI & Data’s Kedro Project. To honor our developer community, we proudly introduce a Developer Contributor Recognition as a tribute to their contributions. The program aims to spotlight and pay homage to their exceptional efforts that span across the AI & Data diverse projects.
- In a significant move towards democratizing artificial intelligence (AI) technologies and promoting fairness in AI systems, Fujitsu Limited and the Linux Foundation have launched two open source software (OSS) projects: SapientML and Intersectional Fairness.
- Introducing ExecuTorch, which offers a compact runtime with a lightweight operator registry to cover the PyTorch ecosystem of models and a streamlined path to execute PyTorch programs on edge devices.
- Huawei and Lightning AI have joined the PyTorch Foundation as the newest premier members.
- We recently announced the PyTorch 2.1 Stable Release. PyTorch 2.1 offers automatic dynamic shape and NumPy compilation support in torch.compile and torch.distributed.checkpoint for saving/loading distributed training jobs on multiple ranks.
- It’s been one year since the formation of the PyTorch Foundation! We were significantly impacted by launching PyTorch 2.0, growing contributors, and adding new member companies.
- Go inside the matrix and learn about using 3D to visualize matrix multiplication expressions, attention heads with real weights, and more.
- Graphcore has joined the PyTorch Foundation as the first general member. Graphcore has contributed to the PyTorch ecosystem by developing integrations to run on their IPU hardware.
- The PyTorch Docathon is coming back for round 2 this year! Starting November 1, join the PyTorch community to come together and improve the quality of our documentation.
- Amazon EC2 Inf2 instances now support training and inference of Llama 2 models. Learn how to deploy Llama 2 with AWS Inferentia 2 and TorchServe.
- We’re excited to announce the PyTorch Documentary in partnership with Speakeasy Productions! The documentary will feature key members and players in the AI and ML space and include reflections from the birth of PyTorch in 2016 up until 2023. View the teaser video here.
- We're excited to announce the general availability of Delta Lake 3.0! This groundbreaking release of the renowned open source Delta Lake project unifies lakehouse storage formats and gives users flexibility and control over their data. Key features of Delta Lake 3.0 include: Delta Universal Format (UniForm), Delta Kernel, & dramatically Faster MERGE and Updates. For a complete list of features, fixes, and improvements, visit the release notes.
- Our latest blog highlights a few of the Delta Lake 3.0 features that are going to have an impact on performance and interoperability. Read here!
- As part of the ELISA Seminar Series, ELISA welcomed Luigi Pellecchia, Senior Software Quality Engineer at Red Hat, to give an introduction to Basil, an open source tool for tracing requirements, code & tests, and Stefano Stabellini, Fellow at AMD, and Xen Hypervisor & Linux Kernel Maintainer, to present the activities to make Xen easier to safety-certify.
- Kate Stewart, Vice President of Dependable Embedded Systems at the Linux Foundation, and Nicole Pappler, CTO and Founder of AlectoMetis, also presented a webinar titled “Automating Adherence to Safety Profiles After Fixing Vulnerabilities.” This video includes a model using SPDX that allows for automated checks for integrity and availability of evidence to prove the systematic capability of software consumed by critical systems.
- On November 1, ELISA hosts a webinar by Ivan Perez Dominguez, Senior Research Scientist, KBR Inc. at NASA Ames Research Center, focusing on “The Road to Safe Space Exploration.” Register here.
- LF Energy members and projects shared knowledge with the open source community at Open Source Summit Europe in September.
- LF Energy governing board chair Lucian Balea of RTE discussed progress and momentum in the community over the past year at the Linux Foundation Europe Member Summit.
- PowSyBl completed its latest release train with new features, including subnetworks in a network.
- OperatorFabric had a major release with v4.0.0, including features essential for electricity, water, and other utility operations.
- LF Energy announced the 1.6 release series of Power Grid Model (PGM), including the PGM serialization feature.
- FlexMeasures v0.16 is now available, with the addition of a profit-loss reporter.
- LF Energy’s head of communications, Dan Brown, spoke with Swapnil Bhartiya of TFIR about the latest momentum in the community and upcoming activities.
- Smart Energy International covered recent software releases from LF Energy, including the formal transition of Arras – formerly HiPAS GridLab-D – from the US Department of Energy to LF Energy.
- ERP Today published a summary of recent momentum in the LF Energy community, including three recent research reports.
- For the latest FinOps news, check out the What’s New page.
- FinOps X and FinOps X Europe (FinOps XE for short) dates have been announced. FinOps X is the largest gathering of the FinOps community and will be held in sunny San Diego on June 19-22. For FinOps communities in Europe - FinOps XE will be in Barcelona on November 11-14. Check out the website for more details.
- Are you curious about the content offered at FinOps X? FinOps X 2023 keynote and breakout sessions are available on the FinOps YouTube channel.
- Meet the local FinOps community in person at the upcoming FinOps Roadshows in London, Munich, Seattle, and Las Vegas.
- Register and join us on November 1st in NYC for the 9th FINOS Open Source in Finance Forum (OSFF) if you haven't already. Use code OSFF23DIS20 for a 20% registration discount. Read the OSFF Keynote announcement.
- In project news, the Spring Bot Maintainer team is happy to announce the 9.0.3 Release of Spring Bot. In this latest release, Microsoft Teams support has been massively improved with better retry and exception handling for dealing with high-throughput scenarios where bots are required to handle large volumes of messages. Read more in the release notes here.
- This year, the Open Source Readiness SIG and the Linux Foundation Certification team have worked very hard to build the FINOS Certified Financial Services Open Source Developer exam, or FSOSD, designed for developers contributing to open source projects while working in financial institutions internationally. Read more in Rob’s blog post here. We're looking for volunteers who would like to participate in the FSOSD beta and become one of the first to get certified; participants will be granted the exam badge, if passed, plus a $250 credit for certifications available at https://training.linuxfoundation.org/certification-catalog.If you're interested, please fill in the form. If you're having issues (i.e., accessing the form), please email email@example.com
- First Big Boost Mondays in NYC! - Oct 30th!
- Jim Adam’s - Citi blog post on the FINOS Common Cloud Controls Project
- Gab’s presence at Money 20/20 Las Vegas FINOS Common Cloud Control Panel
Green Software Foundation
- Decarbonize Software 2023: Scheduled for November 16, this event is currently accepting 10-12 minute lightning talks. Topics include GSF tooling, community building, and the benefits of GSF membership.
- Environment Variables: Subscribe to stay updated on the latest in software sustainability.
- GSF Local Meetups: Connect with like-minded professionals focused on green software best practices.
- Hyperledger Foundation announced seven new members along with the move to graduated status for Hyperledger Cacti and Hyperledger FireFly.
- The Bangko Sentral ng Pilipinas (Central Bank of the Philippines) announced it had selected Hyperledger Fabric as the platform for piloting its wholesale central bank digital currency.
- The Bhutan NDI (National Digital Identity) system will employ a blockchain based on Hyperledger Aries.
- The Federal Government of Brazil revealed that almost 2 million identity documents have already been issued with confirmation of the data on a Hyperledger Fabric blockchain.
- A new case study details how Circulor is readying the market for new regulations by adding Battery Passport to the Hyperledger Fabric-powered traceability platform.
- Leanne Kemp, CEO of Everledger, penned a blog post with her take on how Hyperledger Fabric helped Everledger bring transparency to the diamond market and transform supply chains and ethical practices worldwide.
- For more updates from Hyperledger Foundation, check out the current and past issues of Hyperledger Horizons here.
Open Mainframe Project
- Open Mainframe Summit New York will be co-located with Open Source in Finance Forum on November 1. The event will feature a keynote by John Mertic, Executive Director of Open Mainframe Project, and six sessions, including a security panel, OpenTelemetry, open source best practices, and use cases for Zowe and Galasa. Register today and use the Open Mainframe Summit 20% discount code “20OSFF23.”
- Open Mainframe’s newest project, Galas, brings automated test commodities to open source. Learn more in this new blog.
- Due to its maturity, Mainframe Open Education recently graduated to the Active Stage for the Open Mainframe Project and announced new digital badges for teachers, students, professionals, and managers.
- Zowe Community Leads Fernando Rijo Cedeno, Software Engineer at Broadcom and Open Mainframe Project Ambassador, and Timothy Johnson, Software Engineer at Broadcom and Open Mainframe Project Ambassador, share a comprehensive overview and demonstration of the V2 LTS features and functions in Zowe’s Explorer for Visual Studio Code in this video.
- Yuliya Kirkorava from IBA Group shares a recap of SHARE New Orleans and the future of the Zowe Explorer Plugin for IntelliJ.
- LF Networking and LF Edge recently co-hosted two ONE Summit Regional Day events, which are smaller, localized one-day & one-track versions of Open Networking & Edge Summits. Session videos will be available shortly.
- ONE Summit Regional Day: Spain, co-located with Open Source Summit Europe, featured six sessions with ecosystem experts from across the region speaking on 5G Super Blue Print, 6G, CAMARA & Sylva integration, Anuket & Sylva integration, and more.
- ONE Summit Regional Day: China, co-located with Open Sources Summit & KubeCon & CloudNativeCon China, featured 11 sessions touching on topics like Open Source Best Practices for Telcos, EdgeX Foundry Implementations, Commercialization of CAMARA APIs, Gen AI in Telco, and more.
- The Nephio project has been inducted into LF Networking as a Graduated project to accelerate collaboration and automated cloud native deployments across Telecom, Cloud Service Providers, and Enterprises.
- Nephio hosted its Nephio R2 Technical Summit in Mountain View, CA, October 10-11, with a packed agenda of sessions on the latest tech enabled by Nephio’s second release. Session videos will be available shortly.
- The Call for Proposals (CFP) for the 2024 Open Networking & Edge (ONE) Summit is NOW OPEN! Industry thought leaders are encouraged to submit to speak across an updated collection of tracks to be part of the event, happening April 29-May 1 in San Jose, CA.
- The LFN Developer & Testing Forum takes place in Budapest, Hungary, November 14-16, where LFN ecosystem developers will gather in person and virtually to accelerate the future of networking. Free registration is still open!
- The next ONE Summit Regional Day will occur November 30 in Bangalore, India, with member company Infosys. The packed agenda will feature local ecosystem experts sharing insights across the open networking and edge space. Register for free today.
- The project announced the upcoming availability of the LF Edge Sandbox, a self-service platform to deploy LF Edge projects and solutions to edge devices.
- LF Edge co-hosted the Edge Native AI Hackathon with Open Compute Project (OCP) and ETSI, culminating in a final show-down of 3 finalists onsite at the OCP Summit on October 18. The hackathon aimed to see how the collective communities could influence Edge with Native AI.
- LF Edge’s “Secure Device Onboard (SDO)” project has now become the “FIDO Device Onboard” project. The FDO specification is a new, open IoT standard that enables devices to simply and securely onboard to cloud and on-premise management platforms.
- The SONiC Foundation is hosting a SONiC Workshop, a co-located event at the OCP global summit on October 17, 2023, from 1-5 p.m. Learn about the latest developments of SONiC from industry experts, including innovations in NOS management, improvements in routing, software defined networking and system design. Check out the event agenda
- Check out all SONiC activities at the OCP Global Summit.
- Catch up with the winners of the SONiC Hackathon 2022 in the new blog series: SONiC Hackathon 2022 Winners Where Are They Now. Read the interview with the winning team from Marvell, who worked on optimizing SONiC and reducing SONiC bare metal costs and received the “Most Wanted By Users” award.
- From the Open Source Summit Europe opening keynote stage, it was announced that CAMARA, a Linux Foundation Telco API project, has graduated to a funded model with strong industry support.
- CAMARA member organization Deutsche Telekom announced it’s launched the first CAMARA-based APis in the German market, along with Vonage & Ericsson Software. See this interview with CAMARA technical lead Markus Kummerle about the news.
- As part of ONE Summit Regional Day: Spain, CAMARA participated in a fireside chat on “Open Network APIs” along with representatives from the Linux Foundation and Telefonica. Watch the session here.
- Member organization Huawei featured a CAMARA demo stand in their booth at the recent KubeCon & CloudNative Con China event.
- The GSMA is including a new category for CAMARA in its GLOMO awards for 2024: “Open Gateway Challenge,” which rewards developers who use public CAMARA APIs to create a commercial cloud-based service. See here for more details on how to enter.
Open Programmable Infrastructure (OPI) Project
- OPI Project leverages members to enable HW, SW, and environments to bring an almost turn-key solution with great performance and utilization. Now, all the project needs is use cases. Elad Blatt, Global Head of Business Development Telco Networking at NVIDIA, shares OPI's Use Case Working Group mission and how to get involved in this new blog.
- Marvell, F5 Networks, and Arm, all premier members of the OPI Project, have collaborated to develop the first real-world use case example built on the OPI framework, which will be shown in the Arm booth at the OCP Summit on October 17-19. This first demo paves the way for using the OPI framework to offload key infrastructure management services like security, load balancing, and API gateways from the host CPU to the DPU. This will lower cloud and data center operators' TCO and increase their general compute capacity by freeing up CPU cores for more user applications.
- New versions of Node.js v20 (Current) and Node.js v18 (LTS) are now available.
- Node.js 16 is now end of life; all users must upgrade to Node.js 18.
- See how Wikimedia balances security and open information in web development in our latest case study!
- OpenSSF Welcomed New Members in Support of Securing Open Source Software
- On September 12-13, 2023, the OpenSSF hosted the Secure Open Source Software (SOSS) Summit 2023 in Washington, DC, to address the security challenges for consuming Open Source Software (OSS) in critical infrastructure sectors and beyond. Participation in the Summit included industry leaders and US Government (USG) officials from the National Security Council (NSC), Office of the National Cyber Director (ONCD), and the Cybersecurity and Infrastructure Security Agency (CISA), among others.
- During the SOSS Summit, the OpenSSF released a Vision Brief detailing our community’s work over the past year to secure OSS and plan for the future.
- The SOSS Summit was covered in the Wall Street Journal - White House Calls for Stronger open source Security, Axios - Biden administration, tech industry draft a long-term plan to secure open source software, SDxCentral - How to make open source software more secure (highlights from SOSS), and more.
- Register today for OpenSSF Day Japan, which will take place in Tokyo on Monday, December 4, 2023.
- We hosted a successful OpenSSF Day EU in Bilbao, Spain. Thank you to the speakers, program committee, and attendees!
- Learn more about CISA’s Open Source Software Security Roadmap from Omkhar Arasaratnam and David A. Wheeler
- OpenSSF Released a Source Code Management Best Practices Guide
- Advancing Rustls and Rust for Linux with OpenSSF Support
- Behind the Scenes of the Alpha-Omega Summer Mentorship Program featuring mentors and mentees
- Update from the OpenSSF Securing Critical Projects Working Group
- Announcing the release of sigstore-python 2.0
- Call for participation in Threat Modeling the Supply Chain for software consumers
- We hosted an OpenSSF Tech Talk on Securing the Software Supply Chain: An In-Depth Exploration of SLSA
Alliance for OpenUSD
- There are four key benefits of OpenUSD. Check out this blog by AOUSD founding member Adobe to learn what OpenUSD is and why it is critical for the future of artistic expression.
Open 3D Engine (O3DE)
- The newest Open 3D Engine (O3DE) release, version 23.10, is here! Check out O3DE 23.10, packed with core usability and performance improvements and new capabilities: improved authoring experience, industry-first automation, new capabilities for robotics simulation developers, graphics & rendering enhancements, and much more. Read the blog and download this latest version.
- In the ever-evolving world of game development, choosing the right game engine is a key decision. Amidst the landscape of commercial offerings, open source game engines are steadily gaining recognition. In Breaking Boundaries: The Open Road to Game Development, learn why engines like Open 3D Engine provide a compelling solution alongside commercial counterparts.
- With the Open 3D Engine (O3DE), you can create scripts without coding—and without sacrificing performance—using Script Canvas. In Script Canvas: Scripting Made Easy in O3DE, get an overview of Script Canvas, with pointers to helpful videos and a comprehensive user guide to get you started.
- Human characters are the heart and soul of gaming and immersive worlds, driving the emotional and narrative components that make these experiences truly unforgettable. In Crafting Lifelike Characters in O3DE, dive into a round-up of resources that dive into techniques for creating human characters using the Open 3D Engine (O3DE).
- In Chanelle Mosquera: From Rollercoaster Tycoon Fan to Game Programmer Writer, we chat with Chanelle about her love of games, open source technologies, and her work in building the information architecture and documentation repository for Open 3D Engine.
- In Simplifying C++ Development in O3DE Using CMake, learn how the most widely adopted build system in the C++ community offers significant benefits for C++ development in O3DE, including streamlined project setup and simplified integration with open source projects.
- In Running High-Fidelity O3DE Simulations in AWS Robomaker, Matt Hansen and Stephen Phram of AWS explain how to create robotic simulation projects using O3DE and AWS RoboMaker with step-by-step instructions—from building container images from an O3DE sample application to deploying them as simulation jobs in AWS RoboMaker.
Overture Maps Foundation
- Overture's Jennings Anderson recently joined the MapScaping podcast, shedding light on our mission to create high-quality, interoperable map data. Read the blog highlights and access the podcast here.
- A VerySpatial Podcast features an interview with Marc Prioleau, the Executive Director of Overture Maps, who discusses Overture’s venture into open data, access, and direction.
RISC-VIn our new blog, learn how RISC-V, an open standard backed by a global community, enables open computing for all.
- RISC-V Summit, Santa Clara: Don't miss the 7-8 November summit. Register now! Highlights include:
- A RISC-V 101 on the 6th of November, the day before the summit, is the perfect primer!
- An amazing program of keynotes from Meta, Qualcomm, Red Hat, Synopsys, and more.
- Numerous announcements from our members who are talking and exhibiting at the show.
- The RISC-V Developer Zone showcases the latest in RISC-V developer boards alongside some RISC-V-based products.
- Our exhibition hall features 40 sponsors from across the RISC-V ecosystem.
- Discover how we are Delivering the Future of Automotive Innovation with RISC-V in our webinar on October 26th.
- The Vector Crypto ISA Package and the Additional Scalar Floating Point Fast Track Extension (Zfa) have been ratified by the RISC-V Board of Directors.
- RISC-V Landscape: Discover our continuously updated living document that provides invaluable insights into the diverse RISC-V ecosystem.
- RISC-V Summit Europe: Did you miss the summit? View all the presentations on our YouTube playlist featuring keynotes, tech talks, panels, and more from the three-day event.
- The RISC-V Advocate program brings RISC-V enthusiasts together with RISC-V International to work together to ensure global momentum and adoption. Applications for the 2024 program are open now.
- RISC-V Learn Online provides beginner, intermediate, and advanced online learning to increase engineering expertise and career opportunities on RISC-V across the industry.
- Yocto Project funding boosted by Sovereign Tech Fund
- The Zephyr Project is hosting its first-ever meetup in Munich, Germany, on October 19 at TNG Consulting GmbH. The meetup offers an opportunity for Zephyr RTOS enthusiasts and developers to learn more about Zephyr from industry thought leaders including Kate Stewart, VP of Dependable Embedded Systems at the Linux Foundation; Maximilian Huber, Principal Consultant at TNG Technology Consulting GmbH; Christian Hirsch, Founder, Researcher & Developer, at Research Studios Austria; Nicole Pappler, CTO of AlektoMetis; Christian Kurz, Senior Field Application Engineer, at Nordic Semiconductor Germany GmbH; and Oliver Völckers, CEO, at BeST Berliner Sensortechnik GmbH. Learn more about the planned talks and register here.
- Fuzzing is an automated testing technique to detect problems like crashes or memory leaks in software by feeding it with invalid, often random input. It is especially valuable in safety-critical use cases like the medical or automotive industries. Recently, Antmicro integrated fuzzing with Renode to get closer to hardware & complement existing integrations for testing Zephyr RTOS. Learn more.
- Modern Embedded microcontrollers are highly integrated devices with many built-in peripherals, large memories, and powerful CPU cores. Zephyr RTOS is a “batteries included” offering that combines a real-time kernel, flexible configuration/package management, build system, peripheral driver model, and common utility functions. Learn more in this white paper.
- The project recently launched Zephyr Tech Talks, live streams organized by Benjamin Cabe, Developer Advocate for the Zephyr Project. If you missed any live streams with thought leaders from Goliath, Antmicro, and Trackunit. Watch here.
LF in the media
Cloud computing and Kubernetes
- Forrester's recent blog and interview spotlight Kubernetes as the pivotal technology shaping the future of cloud computing. [Link]
- Highlights from KubeCon + CloudNativeCon + Open Source Summit China 2023, featuring key projects such as RWKV, Common Cloud Controls, and Kubeflow. [Link]
- CRI-O's graduation status within CNCF marks a significant milestone for container runtime technology. [Link]
Open source and security
- JP Morgan's Chief Information Security Officer publicly endorses Sigstore and Alpha-Omega as indispensable for advancing open source and fortifying supply chain security. [Link]
- The OpenSSF Scorecard initiative receives commendation for its invaluable role in helping developers swiftly assess the security of open source software projects. [Link]
WebAssembly (WASM) and web technologies
- LF projects, including various WASM initiatives and OpenTofu, gain significant visibility in O'Reilly's October 2023 Radar. [Link]
- An exclusive interview with Chris A. delves into OpenTofu, WASM, and the growing trend of repatriation from the cloud. [Link]
- The Linux Foundation's stewardship of the Servo project, post-Mozilla's Rust team downsizing, underscores the ongoing challenges in browser diversity. [Link]
Artificial Intelligence (AI)
- A comprehensive look at how PyTorch is poised to serve as a bridge across the CUDA moat and integrate into various segments of the AI application stack. [Link]
- AMD's CEO cites PyTorch as a cornerstone in the company's AI chip strategy. [Link]
- KDNuggets, a leading online data science and AI publication, offers an in-depth introduction to PyTorch and LightningAI. [Link] [ Link]
- CAMARA's telco API project garners attention, including a notable mention from AT&T. [Link]
- Nokia introduced an open API based on CAMARA to facilitate third-party integration with carrier networks. [Link]
- Graduating the Camara API to funded status marks a significant advancement in telecommunications technology. [Link]
Blockchain and identity
- Bhutan announces plans to implement a National Digital Identity program, leveraging Hyperledger Aries. [Link]
- Joseph and OWF receive coverage for their participation in Open Identity Exchange’s Identity Trust 2023 event in London. [Link]
- Tenstorrent partners with Samsung to manufacture RISC-V chips, signaling a major development in the hardware sector. [Link]
- ETH Zurich explores low-power RISC-V designs suitable for CubeSat chips and circuits. [Link]
- Intel unveils a compact software core based on the RISC-V open instruction set architecture for its FPGA devices. [Link]
- An article discusses the complexities of removing the Remote Network Driver Interface Specification (RNDIS) from the Linux Kernel. [Link]
- LF Energy gains traction [Link]
- Universal Acceleration Foundation's launch captures industry attention. [Link]
Follow the Linux Foundation on social media to get all the latest info, updates on upcoming events, and breaking news and announcements from the global open source ecosystem. Follow us here: Mastodon, Bluesky, Facebook, LinkedIn, and X.
2023 Cloud Computing Compliance and Security Projects Linux How-To Diversity & Inclusion Events Open Source Best Practices 2022 Open Source Cross Technology Training and Certification LFX Newsletter Legal Research LF Research Networking and Edge Blog Data Governance Featured LF Energy Open Mainframe OpenChain System Administration