Interested in open source license and security compliance? Join us for a one-day workshop for developers and users of open source compliance tools on Friday, January 30th, 2026 in Brussels just before FOSDEM 2026. Our goal is for open source developers, users, and contributors to exchange requirements, plans, and collaboration opportunities around FOSS tools for software provenance detection, vulnerability management, license detection and regulatory compliance like CRA, code scanning, package dependency analysis, container analysis, SBOM creation and consumption, and license or vulnerability databases - basically, all the tools you need to figure out which FOSS code you use, where it is from, what is its license, how to comply with the license, and whether it contains vulnerable code.

Previous attendees include developers from ORT, ScanCode, ClearlyDefined, FOSSology, Tern, FSFE REUSE, SW360, BANG, Hermine, Opossum, SPDX tools, DoubleOpen, OpenChain, and AboutCode projects along with users from leading technology and industrial companies, open source foundations, and government institutions worldwide. Whether you are a developer or user interested in the tools for Software Supply Chain and SBOMs, a FOSS license-savvy lawyer, a compliance or security analyst, or an OSPO member: you will be warmly welcomed.