This is a writeup of my talk at State of Open Con 2024, about the dependency-management-data project. The talk abstract can be found on my talks site.
This is an updated version of the original talk writeup Quantifying your reliance on Open Source software, due to significant new features, improved documentation, as well as refreshing the content to fit within the conference.
I'm Jamie, I'm a Senior Engineer with an interest towards solving engineering-facing problems, aiming to make folks more effective in their roles, as well as being an avid blogger (on this website), and I've been thinking about the problem of understanding your Open Source dependency tree in this form as early as 2021, but also more generally since ~2019.
As I wrote in the post Analysing our dependency trees to determine where we should send Open Source contributions for Hacktoberfest (CC-BY-SA-4.0):
In recent years, it has become unavoidable to build software on top of Open Source. This is absolutely a great thing, and allows developers to focus on fewer areas of domain specialisation as possible, as well as allowing a much wider range of users to pick up on defects and bring new features to our tools.