Open source devs consider making hogs pay for every download
https://www.theregister.com/2026/02/28/open_source_opinion/
The terrible economics of package registries and how to fix them
https://www.theregister.com/2026/02/16/open_source_registries_fund_security
Why Irresponsible Users Put Open Source Security on Shaky Ground
https://assured.co.uk/2025/why-irresponsible-users-put-open-source-security-on-shaky-ground/
Adding build provenance to Homebrew
https://blog.trailofbits.com/2023/11/06/adding-build-provenance-to-homebrew/
Reversing Labs : How bulk pull requests help scale open source bug fixes
https://www.reversinglabs.com/blog/how-bulk-pull-requests-could-help-scale-open-source-bug-fixes-in-the-supply-chain
DARKReading : 7 Women Leading the Charge in Cybersecurity Research & Analysis
https://www.darkreading.com/vulnerabilities-threats/7-women-leading-charge-cybersecurity-research-analysis?slide=5
SDX Central : How OpenSSF Aims to Make Log4j-Like Incidents Rare
https://www.sdxcentral.com/articles/interview/how-openssf-aims-to-make-log4j-like-incidents-rare/2023/03/
The New Stack : Funding Worries Threaten Ability to Secure OSS Projects
https://thenewstack.io/funding-downturn-threaten-ability-to-secure-oss-projects/
SC Media : Solving open-source security — from Alpha to Omega
https://www.scmagazine.com/feature/devops/solving-open-source-security-from-alpha-to-omega
TechTarget : OpenSSF GM talks funding, legal software supply chain issues
https://www.techtarget.com/searchitoperations/news/252529604/OpenSSF-GM-talks-funding-legal-software-supply-chain-issues
