The Open Source Software Adoption Process (OSSAP) is a structured approach to third party code adoption that allows organizations to leverage open source software in their projects effectively and ensures compliance with licenses and organizational policies. Based on a market survey of the best practices in large and small organizations, this blueprint consists of a number of necessary and optional steps. The process starts with establishment of a company-wide open source policy, defining acceptable licenses and copyrights and security attributes, and tracking and managing all software components within the organization. The process highlights violations of the policy at every stage of development, from developer’s desktop environment, to final compliance before a product is shipped. Creation of actionable reports is a critical part of this process.
The above eight-step blueprint is based on a survey of current organizational practices and Protecode SC's practical experience over the last four years. Part of this experienced is gained by carrying out numerous software IP audits for technology organizations on the verge of a merger and acquisition (M&A) activity, or before their software product is shipped out of the organization (into the end-market or to a client). Increasingly organizations are viewing IP and 3rd–party software license management as part of their Software Quality Development Process, and are evolving their existing quality checklists to include all or part of the following blueprint.