ForgeFlux
/
oss-virtual-incubator
mirror of https://github.com/forgeflux-org/oss-virtual-incubator
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

Add acknowledgement of "end user" software (#2)

This commit is contained in:
R. Miles McCain 2021-12-16 15:04:37 -05:00 committed by GitHub
parent 7aa77d2326
commit 39c8eb8ed5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
README.md
View File

@ -11,7 +11,7 @@
## 1. Ideas wanted
Like [roads and bridges](https://www.fordfoundation.org/work/learning/research-reports/roads-and-bridges-the-unseen-labor-behind-our-digital-infrastructure/) for the digital world, open source software (OSS) makes up much of our digital infrastructure and underlies many critical software systems, both public and private. Sometimes referred to as "free and open source software" (FOSS), OSS can be used, modified, and shared by the public according to its terms of distribution.
Like [roads and bridges](https://www.fordfoundation.org/work/learning/research-reports/roads-and-bridges-the-unseen-labor-behind-our-digital-infrastructure/) for the digital world, open source software (OSS) makes up much of our digital infrastructure and underlies many critical software systems, both public and private. Some of the most popular [apps](https://en.wikipedia.org/wiki/List_of_free_and_open-source_Android_applications) and [websites](https://en.wikipedia.org/wiki/List_of_free_and_open-source_web_applications) are open source as well. Often referred to as "free and open source software" (FOSS), OSS can be used, modified, and shared by the public according to its terms of distribution.
However, OSS faces a sustainability problem. While some OSS projects are well-resourced by companies and non-profit organizations, other OSS code is maintained and released by people who struggle to monetize their work. Moreover, flaws in OSS has been used to mount supply chain attacks such as [Heartbleed](https://heartbleed.com/) and, more recently, [log4j](https://blog.cloudflare.com/how-cloudflare-security-responded-to-log4j2-vulnerability/). Traditional methods of resourcing OSS development and maintenance such as corporate or philanthropic donations, [crowdsourcing](https://babeljs.io/blog/2021/05/10/funding-update), or [volunteer time](https://twitter.com/FiloSottile/status/1469441487175880711) may not be enough.