For work, entire ecosystems of dependencies. For every language, there’s so much you can do by just including a free module.
My company has some decent policies about giving back, but only on a case by case basis. I’ve been encountering resistance from both sides trying to formalize it.
WTF is that developer saying he doesn’t want to scan his opensource projects or take advantage of automated builds and testing, as well as regular dependency updates?
WTF is management so concerned about security and confidentiality but want to just ignore an entire category of components?
We have the tools, we have the process: everyone would be happier of opensource were a first class citizen with well understood rules and practices
For work, entire ecosystems of dependencies. For every language, there’s so much you can do by just including a free module.
My company has some decent policies about giving back, but only on a case by case basis. I’ve been encountering resistance from both sides trying to formalize it.
We have the tools, we have the process: everyone would be happier of opensource were a first class citizen with well understood rules and practices