OpenSSF warns of Open Source Social Engineering Threats - DevOps.com https://devops.com/openssf-warns-of-open-source-social-engineering-threats/ by @sjvn

The XZ attack wasn’t the first, nor will it be the last.

Because I just don't want to! OK!?

Not ever!

Meet the System Package Data Exchange: SPDX 3.0, with Profiles: https://thenewstack.io/introducing-spdx-30-and-profiles/ by @sjvn

With #SPDX 3.0, you can track not just software packages, but pretty much anything and everything. It's a game-changer. #OSSummit #Security

Return with me to the Glory Days of Windows XP, which apparently some people, somehow, are still using even though support for it ended in...2014. https://www.computerworld.com/article/2091600/youre-not-really-still-using-windows-xp-are-you.html by @sjvn

It started as a joke, but to my bemused dismay, I've discovered that many people still use #Windows XP. Eep!

The Commonhaus Way to Manage Open Source Projects - DevOps.com https://devops.com/the-commonhaus-way-to-manage-open-source-projects/ by @sjvn

So if you want to manage your #opensource project better but want flexibility, consider Commonhaus.

Henry #cat is two.

Say what you will about VGA cables, once you had them properly connected, they were Not coming out.

Boy, their network has really gone down the toilet!

Linux Foundation is leading fight against fauxpen source https://theregister.com/2024/04/12/linux_foundation_opinion/ by @sjvn

The Linux Foundation actively supports open-source forks of once open-source projects that their corporate owners have moved to non-open licenses.

Locking down container security once and for all with Rust-based Edera https://zdnet.com/article/locking-down-container-security-once-and-for-all-with-rust-based-edera/ by @sjvn

A new #Rust-based, memory-safe, #opensource hypervisor promises to make #cloudnative #container management much safer. #Security

OpenTofu Denies Hashicorp's Code-Stealing Accusations - http://DevOps.com https://devops.com/opentofu-denies-hashicorps-code-stealing-accusations/ by @sjvn

OpenTofu claims Hashicorp was mistaken. Will Hashicorp pull back from its cease and desist order? Stay tuned. #opensource

Or, was it? When translated, the first message read: “We’ve been trying to contact you about the extended warranty on your starship.”

How do you like my bar graph showing how much of the door I've painted?

Securing Open Source Software, the Cyber Resilience Act Way https://devops.com/securing-open-source-software-the-cyber-resilience-act-way/ by @sjvn

The EU CRA requires new #security rules for #opensource software development. Here's how the Eclipse Foundation and allies are tackling this problem.

Tetrate Enterprise Gateway for Envoy Graduates: https://thenewstack.io/tetrate-enterprise-gateway-for-envoy-graduates/ by
@sjvn

It's time to replace Ingress on your #Kubernetes cluster and Tetrate has an alternative, Tetrate Enterprise Gateway for Envoy, for you to consider.

Hashicorp Versus OpenTofu Gets Ugly - http://DevOps.com https://devops.com/hashicorp-versus-opentofu-gets-ugly/ by
@sjvn

The lawyers are getting involved in the #opensource battle between
Hashicorp and OpenTofu
.

It's been a decade, people. Get rid of it already!

Tell me a story Daddi 2.0.