🛡️ RISK BADGE: 🔴 HIGH (Network Copyleft)
Executive Summary: What is it?
The Open Software License 3.0 (OSL-3.0) is an OSI-Approved, strong copyleft license, often compared to the AGPL but with distinct legal mechanisms.
- Commercial Usage: Permitted for any business purpose.
- Modification Rights: You have the full right to modify the source code.
- Network Trigger: Source code must be shared if you distribute or deploy the software over a network.
CFO / Business Impact: What does it cost/risk?
Viral Compliance Risk. Like the AGPL, this license is designed to prevent "SaaS" private modifications. It requires careful legal vetting if you are building a product based on OSL-licensed components to avoid being forced to open-source your proprietary IP.
🏛️ The "Business Risk" Matrix
| Factor | Risk Level | Notes |
|---|---|---|
| Vendor Lock-in | 🟢 Low | Code is perpetually open. |
| Viral Effect | 🔴 High | Strong copyleft; affects the whole application. |
| Compliance Cost | 🔴 High | Strict requirements on distribution and patents. |
Technical Reality: How does it work?
- Network Distribution: Deploying as a SaaS triggers the legal obligation to share modified source code.
- Patent Termination: Contains an explicit patent retaliation clause protecting the project.
- Derivative Works: Any modifications or linked works must typically be released under the OSL-3.0.