[Rpm-maint] [rpm-software-management/rpm] I am concerned about the future of FOSS projects (Discussion #3858)
Richard Williams
notifications at github.com
Sat Jul 5 19:57:13 UTC 2025
I know this is quite out of the ordinary for your average discussion here, but I don’t think that huge corporations, let alone the entire internet, should be relying on FOSS projects to run. There have been multiple incidents regarding the FOSS foundation issue already, like Log4Shell, XZ Utils’s backdoor and OpenSSL’s Heartbleed bug.
At this point, there have been so many incidents that we genuinely just cannot afford any more.
I am William Richards (https://x.com/CorpseLeague) and I am hosting a movement to fix the FOSS project foundation problem for good so the internet can be a safe place for everyone.
I have written an article of the details of the issue too, listing every known FOSS project in the community; https://medium.com/@corpseleague/dear-united-nations-the-internets-fragile-foss-foundations-pose-a-risk-to-humanity-2e98fdd94bd9
I have additionally contacted a UN member about this so they can get this information to the United Nations; https://x.com/mcraddock/status/1941039486122787201
I am additionally going to reach out to Jen Gentleman about this as she has a lot of power in Microsoft to fix this issue.
I may have also accidentally leaked the article’s information to a sleeper agent (although I’m not sure), so just to be safe, if you have someone fairly new (at least a month since they've began contributing to your project) contributing to your project asking to be a maintainer, be very cautious when you trust them. This is just so another XZ Utils incident doesn't happen again.
Mark will get the article with the information on the FOSS problem to the UN so we won’t have to worry about bugs in FOSS projects breaking the entire internet anymore.
I suggest getting in touch with every FOSS maintainer listed in the article so we can form a community against the destruction of humanity.
--
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/discussions/3858
You are receiving this because you are subscribed to this thread.
Message ID: <rpm-software-management/rpm/repo-discussions/3858 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20250705/92445b1d/attachment.htm>
More information about the Rpm-maint
mailing list