7 metrics to evaluate risk in Open Source libraries

Metrics to assess risk in open source libraries are becoming more important. We need these tools and techniques to evaluate and mitigate the potential risks associated with using third-party open source software libraries in our own software applications. So, this blog post describes seven important metrics to evaluate this risk from an open source community perspective.

Continue reading “7 metrics to evaluate risk in Open Source libraries”

Give Credit Where Credit Is Due: Identify Contributors From Commit Messages

Want to identify all contributors who helped with the source code of an open source project but find yourself limited by what is officially captured in the git-log? Maybe your project, like the Linux Kernel, keeps track of who helped with patches by adding their name to the commit message, but tools don’t usually understand how to analyze this properly.

Continue reading “Give Credit Where Credit Is Due: Identify Contributors From Commit Messages”

Up ↑