OSPOlogyLive Malmö

Thursday, May 30th to Friday, May 31st

Join the fourth OSPOlogyLive Europe in Malmö (part presentations, part roundtable sessions) to help organizations navigate Open Source Program Offices (OSPOs) operations and management in European regions. OSPOlogy Live is hosted by the OSPO at IKEA and co-organized with Linux Foundation Europe, InnerSource Commons Foundation, OpenChain, SPDX, CHAOSS, TODO Group and OpenSSF projects.

OSPOlogyLive Malmö is intended for people engaged in OSPOs or similar initiatives (FOSS Offices, Open Source Centers, etc.), and ISPOs (InnerSource Program Offices) across companies based in Europe. As seats are limited to 50 people, we recommend that attendees RSVP in advance

InnerSource and Culture

Strategies for adopting open source practices within organizations to foster innovation, efficiency, and a collaborative culture

EU Regulation and Collaboration

Explore the impact of EU regulations on the collaboration between businesses and open source foundations, and how these laws shape open source practices

Insights from SBOM Land

Recent developments and best practices in Software Bill of Materials (SBOM), focusing on enhancing transparency, security, and compliance in the software supply chain.

Measuring Success

Explore methodologies for assessing the impact of open source contributions and the cultural shift towards open collaboration, combining OSPO and InnerSource metrics

OSPO and ISPO Journeys

Sharing open source and InnerSource journeys from businesses across sectors established in Europe and Sweeden

📝 Schedule and Program

All times are in Central European Summer Timezone (CEST)

9:00 AM – 9:30 AM (15 mins) ✍️ Registration 9:30 AM – 9:45 AM (15 mins) ⭐️ Welcome (intro to organizers, host, and advisory board) 9:45 AM – 10:00 AM (15 mins) 💬 Open Source and InnerSource journey at IKEA | Supriya Chitale - IKEA 10:00 AM – 10:15 AM (15 mins) ☕️ Coffee Social 10:15 AM – 11:00 AM (45 mins) 💬 How to maintain software security and license compliance in a world of AI-generated code | Aaron Branson - FOSSID 11:00 AM – 11:15 AM (15 mins) ☕️ Coffee Social

11:15 AM – 12:00 AM (45 mins) 💬 Updates on EU Policies (AI Act and CRA) | Cailean Osborne - LF Europe

12:05 AM – 12:55 AM (45 mins) 💬 OSPO’s OKR | Mary - Volvo 13:00 – 14:00 AM (60 mins) 🥗 Lunch & Networking

14:00 - 14:45 AM (45 mins) 💬 Reporting from SBOM land - recent developments and best practices | Thomas Steenbergen - OSS Review Toolkit

14:45 - 14:55 (5 mins) ☕️ Break

14:55 - 15:40 AM (45 mins) 💬 Open source in Automotive: health analysis and risk management | Johan Linåker - RISE

15:45 - 16:45 (60 mins) 👩‍💻Roundtables (part 1):

A) Practical issues on how to consume proprietary and open source products and contribute to OSS (Lead By Cailean Osborne)

B) To be elected by Attendees (Lead by Sean Goggins)

16:45 - 17:00 (15 mins) ☕️ Break

17:00 - 17:10 (10 mins) 👩‍💻Roundtables (part 2):

Shared learnings with the group (leaders of each roundtable present key findings to the audience and next steps)

17:10 - 17:15 (5 mins) ⭐️ Wrap-up and social gathering details

9:00 AM – 9:15 AM (15 mins) ☕️ Coffee Social 9:15 AM – 10:00 AM (45 mins) 💬 OSPOs in the Gen AI age | Jim - Ericsson, OpenChain

10:05 AM – 10:50 AM (45 mins) 💬 The open source and InnerSource virtuous cycle Tom Sadler - BBC, InnerSource Commons

10:50 AM – 11:00 AM (10 mins) ☕️ Coffee Social

11:00 AM – 11:45 AM (45 mins) 💬 OSPO and InnerSource metrics & CHAOSS tooling Sean Goggins, Ana Jiménez - CHAOSS

11:45 AM – 12:00 AM (15 mins) ☕️ Coffee Social

12:00 AM – 13:00 PM (60 min) 👩‍💻Roundtables (part 1):

A) Best practices for OSPOs to help security teams secure software supply chain: processes, communication channels and tooling (Lead by Ana JIménez) B) To be elected by Attendees (Lead by Sean Goggins)

13:00 PM – 13:45 PM (45 mins) 🥗 Lunch & Networking

13:45 AM – 13:50 PM (10 mins) 👩‍💻Roundtables (part 1):

Shared learnings with the group (leaders of each roundtable present key findings to the audience and next steps)

13:50 AM – 14:00 PM ⭐️ Wrap up

Download Program

👩‍🏫 Featured Presentations

How does EU regulation shape the relationship between businesses and open source foundations?

How will software manufacturers and open source software stewards work together? This topic can delve into the intricate dynamics between EU regulatory frameworks and the collaboration between businesses and open source foundations. It aims to explore how legislation influences software manufacturing, open source software stewardship, and the broader implications for global open source practices.

Insights from SBOM Land: Tools and Best Practices

Things in SBOM land are moving fast and it's hard to keep up with the various community calls, conferences and workshops. Thomas has been active in the SBOM community for many years as maintainer of various SBOM tools and co-author of SPDX SBOM standard. In this talk we will recap recent developments and shared best practices in a series of easy-to-understand problem & solution statements to help with your SBOM implementation.

Metrics for Success in OSPO and ISPO

This presentation will address how organizations can quantify and measure the value of their open source and InnerSource initiatives. It will explore strategies and tooling for assessing the impact of open source engagement in companies, and the cultural shift towards more open collaboration models.

Open Source Journeys and the Role of OSPOs

Representatives from various companies will be sharing their journeys related to open source management, from startegy, regulatory challenges and cultural transformation to practical tooling and metrics for measuring the impact of open source initiatives

🙋‍♀️ Unconference Roundtables

Roundtables are a format of open forum discussions designed to illuminate common questions and challenges in a particular field. They serve as a collaborative platform where participants can come together to explore solutions, share best practices, and collectively overcome obstacles. In these sessions, the meeting notes are taken with great care to ensure anonymity and inclusivity. These notes are then shared in the OSPOlogyLive repository under the Creative Commons Attribution 4.0 International (CC-BY 4.0) license. This open-access approach allows for the broader community to benefit from the insights and solutions generated during these discussions, ensuring that the knowledge and ideas developed are freely available for everyone to reuse and build upon.

Roundtable sessions are led by community participants. These sessions are divided into two categories: Featured Roundtable Sessions and Unconference Roundtables. Featured Roundtable Sessions are pre-defined topics. In the unconference Roundtables, the topics for these sessions are elected by the attendees on the same day, allowing for the exploration of current and emerging issues that are most relevant to the participants.

Disclaimer: Full descriptions and speakers will be announced shortly in the agenda. Please note that these details are provisional and may be subject to change



May 30 – 31, 2024
7:00 AM – 12:00 PM UTC


  • IKEA



InnerSource Commons logo

InnerSource Commons

OpenSSF logo


Open Chain Project logo

Open Chain Project

LF Energy logo

LF Energy

TODO Group logo

TODO Group

SPDX logo




Linux Foundation Europe logo

Linux Foundation Europe

Foundation for Public Code logo

Foundation for Public Code