June 21-24, 2022
Austin, Texas, USA + Virtual
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit North America 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central Daylight Time (UTC -5). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Back To Schedule
Thursday, June 23 • 5:45pm - 6:25pm
BoF: Community Health and Vulnerability Mitigation - Sean P. Goggins, CHAOSS Project and University of Missouri-Columbia

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
CHAOSS Project newcomers are increasingly interested in understanding the effects of dependencies on the vulnerability of repositories that constitute an open-source project. At the same time, the relationship between responsiveness to issues, pull requests, and bug fixing is becoming widely accepted as more significant for understanding community health than commit and other measures of project activity. This birds of a feather session is for people who are managing the high wire act between welcoming newcomers and ensuring the timely mitigation of identified vulnerabilities. A new Metrics Model, "Community Welcomingness" is complemented by the CHAOSS "Community Dependency and Vulnerability" metrics model to make these two nuanced, and critical perspectives on open-source health and sustainability at the project level more visible for community managers. What other critical indicators are required for building community in an open-source world where understanding software dependencies, dependency age, and the likelihood of vulnerabilities signaled by those metrics is essential? Talk with folks with such feathers in their briefcases here!


Sean P. Goggins

Professor, CHAOSS Project and University of Missouri-Columbia
Sean is a Professor of Electrical Engineering and Computer Science at the University of Missouri, where his research foci are open source software and human-centered data science. Sean is a founding member of the Linux Foundation’s working group on community health analytics for... Read More →

Thursday June 23, 2022 5:45pm - 6:25pm CDT
Room 408/409 (Level 4)