Bryan Hughes @nebrius Another take on all this: OSS is fundamentally presumed to be based on individual volunteer contributions done using all your free time.OSS development should be funded by the companies who consume it. This would mitigate so many of these issues. twitter.com/andrestaltz/st… 01:02 AM - 27 Nov 2018 André Staltz @andrestaltz 24
The issue of funding OSS also brings up the issue of the very recent event-stream package incident.
event-stream
Are you sure you want to hide this comment? It will become hidden in your post, but will still be visible via the comment's permalink.
Hide child comments as well
Confirm
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
The issue of funding OSS also brings up the issue of the very recent
event-stream
package incident.How do we improve security in the npm ecosystem?
nepeckman