I recently wrote 2 essays on the subject of AI Native Automation over on the AINT blog. The gist of them is simple: AI Native platforms are about to disrupt - and maybe disembowel - what we know today as devops AI Native platforms are about to dramatically increase the scope of open source ecosystems… Continue reading AI Native and the Open Source Supply Chain
The evolution of software methodologies is evident in the shift from Linux distributions to reliance on freely available repositories. However, recent security incidents have exposed the weaknesses of this approach. As risk mitigation measures resemble those provided by Linux distributions, there is potential for their comeback in application development. This could reduce the risk of supply chain attacks.
Now that I work in an engineering environment tailored for SaaS development, I've developed a better understanding of the challenges they face when open sourcing their code. I wrote it up for OpenSource.com in a 2-part article, "How to decide whether to open source your SaaS solution." Some tidbits: The decision to open source code… Continue reading Open Source and SaaS
https://youtu.be/jWccpP5844Q Shane Coughlan is the founder and manager of the Openchain Project, which "builds trust in open source by making open source license compliance simpler and more consistent." As any software asset management person can tell you, they get cross-eyed when it comes to open source license compliance. My opinion has always been that this… Continue reading Podcast: Shane Coughlan of Openchain
Harvard Business Review has an article comparing old, crusty open source code to the Y2K ordeal. Go ahead and read it - it's worth your time. Joshua Gans, the author, lists open source projects that are maintained by lonely developers who don't make much money (if any) for producing their craft. He specifically calls out… Continue reading Sustainable Open Source – Where Are the Vendors?
I published a bit over at OpenSource.com. Read the full article here. It's a plea to look externally and figure out how your technology relates to all that's happening in the greater ecosystem. There are still way too many companies who suffer from NIH and end up saddled with way too much technical debt. Don't… Continue reading It’s the Ecosystem, Stupid
In defense of the community distribution Ever since the mass adoption of Agile development techniques and devops philosophies that attempt to eradication organizational silos, there's been a welcome discussion on how to optimize development for continuous delivery on a massive scale. Some of the better known adages that have taken root as a result of… Continue reading Product Development in the Age of Cloud Native
I love talking about supply chain management in an open source software context, especially as it applies to managing collaborative processes between upstream projects and their downstream products. In the article linked above, I called out a couple of examples of supply chain management: an enterprise OpenStack distribution and a container management product utilizing Kubernetes… Continue reading Supply Chain Case Study: Canonical and Ubuntu
Congratulations, Docker. You've taken the advice of many and gone down the path of Fedora / RHEL. Welcome to the world of upstream/downstream product management, with community participation a core component of supply chain management. You've also unleashed a clever governance hack that cements your container technology as the property of Docker, rather than let… Continue reading An Open Letter to Docker About Moby
On Tuesday, Solomon Hykes, Docker's CTO and co-founder, unleashed the Moby Project on the world. I'll admit I didn't fully grasp its significance at first. This might have something to do with being on vacation in Cape Cod and not being at DockerCon, but I digress. It wasn't until I read this Twitter thread from… Continue reading Why Project Moby is a Brilliant Move by Docker
