Open source software powers nearly every modern application, but with rapid adoption and growing code complexity come real risks. From evolving global regulations to the growing use of AI-generated code, today’s open source landscape demands a proactive and modern approach to risk management. This 30-minute session explores the key considerations every organization should be thinking about right now, including: Why open source is no longer “just a developer decision”, The latest EU and global regulations, including the Cyber Resilience Act (CRA), and their implications, The growing importance of Software Bill of Materials (SBOMs), audits, and having a clear component repository, How AI-generated code complicates compliance, and why snippet-level scanning is now essential to detect open source and copyrighted material it may include.
