When approaching a new software project, the first step I take is to assess its feasibility. Next, I explore whether there’s an open-source solution available that can be adapted to meet the requirements. If not, I consider developing a custom solution tailored specifically to the project's needs. I then evaluate the technology stack, carefully selecting a programming language such as C#, Python, or Swift, and identifying the libraries we might use. At this stage, it’s crucial to verify the licensing terms of each library, ensuring they align with open, permissive licenses like MIT to mitigate any compliance risks. Only after completing these steps and ensuring all bases are covered do I commit to taking on a new project.

I will recommend 3 things .. A) Audit all third-party libraries for proper commercial licenses. B) Implement proactive monitoring for license changes. C) Consult legal teams to address potential conflicts before they affect the project.

1. Inventory All Software Dependencies Create a detailed list of all third-party libraries, frameworks, and tools your project relies on, including their versions. Use tools like dependency scanners (e.g., FOSSA, Black Duck, or Snyk) to automate this process. 2. Understand License Types Familiarize yourself with common open-source licenses (e.g., MIT, Apache 2.0, GPL, LGPL). Focus on understanding obligations like attribution requirements, distribution rules, and restrictions on use. 3. Check Compatibility Ensure that the licenses of your dependencies are compatible with each other and with your project's intended use.

Today I reflected on the importance of managing software licenses effectively before starting any development project. Ensuring compliance with terms and conditions is not just a technical task, but a strategic move to avoid surprises and build a solid foundation for the project. Carefully analyzing contracts, identifying real use and regularizing what is necessary brings clarity and security to the team. Each new lesson reinforces how technology, when well managed, becomes a powerful ally. I'm sharing this experience because I believe that, in our field, every small adjustment leads to significant results! 🚀 How do you manage your software licenses? Any tips or best practices? Let's share ideas! 😊

I was IT Division Head for BRI Syariah in 2012-2014, and I face the same situation. What I did was to understand very carefully the license agreements. I asked legal and compliance people to read and to have the opinion. I also look for other opinion or benchmark from the market. Secondly, I matched between the budget and the cost to ensure usage optimization, and certainly to monitor the usage very carefully which I asked audit people to sit in. Lastly, I reported to the board of directors the progress and the situation.

I would try to study the requirements first to understand the technical stack required to develop the software. Then may look for any specific components is required to meet the demand. If at all required, will check with organization to understand if there is any existing license and agreements with the vendor. Understand the risk and mitigation plans with all the stakeholders and proceed with the software development.

Reviewing Dependencies: Check all the software/third party libraries that you are using for their license etc. ensure their use and if they are free or costly to use e.g., commercial, open source. Understanding License Types: check for distribution or usage clauses. Compliance Check: check if they are free to use or attribution is required to use or any other obligation to adhere compliance. Legal Consultation: in case you are using any other paid license or library then consult with legal expert for advice on use and any existing contract to use.

Treat licensing as a critical risk from day one. Clearly define your needs and why this project is necessary. Analyze use cases, build concrete requirements, and research solutions thoroughly. Engage peer reviews, those with experience who've been where you're going, and analysts (like Gartner), and stay focused to avoid scope creep. Strong sponsorship, leadership buy-in, and realistic planning are essential. Consider open source to prevent vendor lock-in, but understand the security implications and usage agreements before you choose this direction. Remember, businesses exist to make money, so when you hire a company for a product or service, they likely have a successful bottom line for the sale and usage of their product or service.

One would hope that that risk had been identified and assessed and mitigated prior to selection and investment. However, I know from experience that doesn't always happen. A rigorous project premortem is a great way to identify risks of all type, including licensing. Once a licensing dependency is identified ensure your legal and procurement stakeholders are informed, engaged and you understand their processes and SLAs so they can be cared for in your plan.

To spot licensing risks early in a software project, review all third-party software, libraries, and tools to ensure they follow licensing rules. Work with legal and procurement teams to confirm usage rights and resolve restrictions. Use tools to track licenses and flag issues, especially with open-source software. Set up a process to check and document all external software to avoid problems and keep the project on track.