What Maintainers need to know about Open Source Licensing, SBOMs and Security
GitHub shares Jeff Luszcz’s overview of what open source maintainers should know about licensing and SBOMs, and how these practices affect software supply chain security and user expectations heading into 2026.
Full summary based on description
What the session covers
Jeff Luszcz (GitHub Open Source Programs Office) reviews:
- What open source maintainers should know about open source licensing
- What SBOMs (Software Bills of Materials) are and why they matter
- How licensing and SBOM practices impact software supply chain security
- What users are expecting from maintainers in 2026 around these topics
Why it matters for maintainers
The description frames licensing and SBOMs as practical expectations that influence downstream trust and security posture for consumers of open source dependencies, especially in the context of supply chain security.