How Legal Teams Can Collaborate with Engineering to Reduce Open Source Risk

Open source software (OSS) is everywhere in application development today — it’s estimated that over 90% of modern applications use at least some OSS. But without strong alignment between legal and engineering teams, it can be difficult for organizations to maintain compliance with OSS license requirements. 

In this whitepaper, produced in partnership with our friends at Above the Law, we’ll cover several important ways legal teams can improve collaboration with engineering organizations when it comes to the use of open source software. The whitepaper will discuss how to:

Create policies that govern the use of open source

Get engineering buy-in on implementing these policies

Develop specific legal-engineering license compliance workflows

Manage your engineering team’s contributions to external open source projects


Up to 90% of any piece of software is from open source, creating countless dependencies and areas of risk to manage. FOSSA is the most reliable automated policy engine for security management, license compliance, and code quality across the open source stack. With FOSSA, engineering, security, and legal teams all get

complete and continuous risk mitigation for the entire software supply chain, integrated into each of their existing workflows. FOSSA enables organizations like Uber, Zendesk, Twitter, Verizon, Fitbit, and UiPath to manage their open source at scale and drive continuous innovation.

Use Cases

Risk Mitigation

FOSSA users benchmark 47% fewer false-positives by finding dependencies they actually rely on earlier in the SDLC.

Continuous Compliance

Get 90% faster insight in your CI/CD workflows — an average of four weeks shorter compliance implementation time.

Due Diligence

Only FOSSA delivers the most complete open source audit for IPOs and M&As plus 5% annualized engineering savings in the first week alone.