Source: thenewstack.io
Funding Is Just One Piece of the Log4j PuzzleCategory: Software, Security
Last week, we looked at a number of responses to the https://thenewstack.io/log4shell-we-are-in-so-much-trouble/, which all seemed to lead to one conclusion — https://thenewstack.io/log4j-is-one-big-i-told-you-so-for-open-source-communities/ regarding the effects of lack of funding in open source software. While the lack of funding in open source is certainly a problem, could funding have prevented the Log4j vulnerabilities?
I’ve avoided a hot take on the log4j situation because frankly I’m tired of tech hot takes.
If open source maintainers are saying “I told you so,” it is really about more than just open source funding.
Money won’t magically solve open source security issues, but put in the right directions, it seems like it certainly could help.
I’ve avoided a hot take on the log4j situation because frankly I’m tired of tech hot takes.
If open source maintainers are saying “I told you so,” it is really about more than just open source funding.
Money won’t magically solve open source security issues, but put in the right directions, it seems like it certainly could help.
Related Articles
Community Partners
DevOps Careers