• ____@infosec.pub
    link
    fedilink
    arrow-up
    2
    ·
    7 months ago

    It’s amazing how many companies rely on a crazy amount of FOSS libs, etc.

    In the relatively recent past, a boss who I had software PMd for across numerous years had the unmitigated gall to ask me for a list of licenses for “all the software we used.”

    I literally laughed in his face, explained open source and the rabbit hole such a question goes down, and he just couldn’t (wouldn’t) get it.

    Unfortunately, the biz side of the house doesn’t like “yeah, it’s all legal, but fuck you if you think I’m documenting every piece of code in every library in a ten plus year old code base, allllllll the way down.”