开源软件供应链风险事件的根源和症结

Abstract:The Russian-Ukrainian conflict has triggered a comprehensive increase in sanctions against Russia by European and American countries，and the sanctions have gradually extended from the politics and economy to the science and technology and culture. In the open source world，reports that GitHub，the largest open source code hosting platform，will restrict access to its code repositories by Russian developers have been buzzing for a while. The risk of supply interruption of open source software has once again been pushed to the forefront of the industry’s attention：Is open source software really “open source”？Is Open Source Software Really Safe？Can the spirit of open source escort open source software？By clarifying the root causes and “Crux” of the risk of supply interruption of open source software，we can grasp the influencing factors of the risk of supply interruption of open source software from the source，so as to provide reference for coping with and solving the risk of supply interruption of open source software.

收起