Open Source Summit is the premier event for open source developers and contributors. It’s where maintainers, technologists, and community leaders come together to share knowledge, collaborate on solutions, and push open source projects forward. It’s the home for code, community, and the people driving the future of open source.
A Cross-Domain Home for the Entire Open Source Ecosystem
Open Source Summit is not a single-focus, niche event—it’s the big tent that unites the full spectrum of open source technologies and communities. Whether you work in cloud infrastructure, Linux kernel development, AI/ML, embedded systems, DevOps, security, or safety-critical systems, Open Source Summit offers a shared space to exchange ideas, make connections, and learn across domains. It’s where technologists who don’t typically land in the same room get a chance to collaborate.
At the same time, Open Source Summit brings in the leaders and practitioners who support the ecosystem from non-technical angles: open source program office (OSPO) staff, legal experts, policy advocates, standards organizations, equity champions, community managers, and foundation leaders. Together, they help shape the frameworks, culture, and strategy that make open source work.
A Strategic Gathering for Open Source’s Future
This event serves as a strategic checkpoint for the open source movement. It’s where conversations happen about not only what’s being built—but how and why. From sustainability and funding models to licensing, AI alignment, security, and governance, Open Source Summit brings clarity and direction to a fast-changing open source landscape.
Whether you’re deep in code or focused on enabling the communities and structures that support it, this is where your work gains momentum and impact.
Safety Critical Software Track:
The ELISA Project will be part of the safety track that explores the intersection of open source and safety standards, covering best practices for regulatory compliance, security updates, and safety engineering. Sessions will delve into requirements traceability, quality assessments, safety analysis methodologies, and technical development for safety-critical systems.
Session Highlights:
Software Supply Chain Management With the Yocto Project – Joshua Watt, Garmin
Wednesday May 20, 2026 11:00am – 11:40am CDT
Managing software supply chains is an important part of safety critical software. In this talk, Joshua will describe the technologies, methods and lessons learned that the embedded software space uses to manage software supply chains using the Yocto project.
The Final Phase of Xen Safety: Solving Coverage and Residual Gaps – Stefano Stabellini, AMD
Wednesday May 20, 2026 11:55am – 12:35pm CDT
AMD, in collaboration with the Xen community, continues to advance efforts to make the Xen hypervisor safety-certifiable to ISO 26262 ASIL D and IEC 61508 SIL 3. The project has progressed from Safety Concept Approval toward the final certification phase.
This presentation will share practical lessons learned, including how we structure requirements and architecture specification documents to make them easier to review for Open Source experts. It will describe the tools and processes we use to maintain end-to-end traceability and explain how we leverage GitLab to automate requirements-based testing and verification pipelines.
We will also address the remaining challenges on the path to completion, including code coverage and FMEA. In particular, we will explain why achieving comprehensive code coverage is uniquely challenging for a widely used Open Source project such as Xen and outline the strategies we are applying to meet 100% code coverage targets.
Finally, we will describe our approach to FMEA (Failure Mode and Effects Analysis) and how it evolved to better align with existing upstream Xen failure-handling practices.
From Pull Request To Patient Safety: How Tidepool Built an Open-Source Quality Management System – Tapani Otala, Tidepool
Wednesday May 20, 2026 2:10pm – 2:50pm CDT
When software can directly affect whether someone lives or dies, “move fast and break things” isn’t an option. But does that mean safety-critical software can’t be open source? Tidepool’s experience building Tidepool Loop – an FDA-cleared, open-source automated insulin delivery (AID) system for people with Type 1 diabetes – proves it can.
This talk explores how Tidepool developed an open-source quality management system (QMS) that achieves full requirements traceability and testability while preserving the collaborative, transparent ethos of open-source development. We’ll walk through the real-world challenges of mapping regulatory requirements to code contributions, maintaining traceability across a distributed contributor base, and building test infrastructure that satisfies both FDA expectations and open-source community standards.
Attendees will leave with a practical framework for applying requirements traceability and verification practices to open-source projects operating in regulated or safety-critical domains from medical devices to automotive systems to critical infrastructure.
Standardizing Deterministic Interoperability and Resource-Intelligent Design in Medical Robotics – Lilinoe Harbottle, San Jose State University
Wednesday May 20, 2026 3:05pm – 3:45pm CDT
In medical robotics, innovation can be bottlenecked by vertically integrated architectures that contribute to medical “deserts” due to high costs and limited interoperability. This session explores architectural frameworks for standardizing deterministic interoperability, shifting the safety burden from non-transparent hardware to auditable software logic. By establishing these standards, this work ensures that clinical technology is not restricted by fixed vendor-lock.
Through a methodology of high-precision kinematic verification and deterministic mapping, open-source code becomes the catalyst for hardware autonomy. This approach ensures sub-millisecond reliability in the operating room while promoting lifecycle sustainability through vendor-neutral middleware.
Attendees will learn about the implementation of safety-operated envelopes and clinical validation models that facilitate reproducible research and lower barriers to local manufacturing. By prioritizing architectural transparency over closed-loop frameworks, this session outlines a path toward a more sustainable and accessible future for global healthcare.
Modernizing Software Verification – Craig Christianson, United States Air Force
Wednesday May 20, 2026 4:20pm – 5:00pm CDT
In this session, Craig will discuss the importance of verifying safety-critical software by giving real-world examples of peoples’ lives who were saved or put at risk by software. He will share the compliance challenges faced by software engineers working on safety-critical software. He will give a brief overview of software assurance requirements for safety-critical systems and show how formal methods and automated reasoning are accelerating and improving the assurance process. He will give a brief introduction to automated reasoning tools and semantics, and will share success stories from a handful of open-source projects who are using these methods to reach assurance goals faster. Craig will finish by walking the audience through the design of a simple demonstration project that utilizes these technologies.