top | item 46672365

(no title)

femto | 1 month ago

The post referred to the Sovereign Tech Agency (https://www.sovereign.tech). The problem that the Sovereign Tech Agency is trying to solve seems to be a hard one.

OpenPrinting is listed as a funded project:

https://www.sovereign.tech/tech/openprinting

yet 7 days ago someone who works on OpenPrinting was here and stated:

"The whole printing stack is supported by 4 people, 2 of whom are doing that since the inception of CUPS in 1999. Scanning is maintained by a single person."

https://news.ycombinator.com/item?id=46579361

Isn't this the situation the Sovereign Tech Agency is trying to avoid?

discuss

einpoklum|1 month ago

Yikes :-(

This makes me wonder - is there some platform on which people who maintain important (or arguably-important) facilities can post Wanted ads for volunteer co-maintainers?

I realize that the number of people who would actually be crazy enough to browse that platform and answer such ads is pretty small... but - it may be noticeably above Zero.

marcus_holmes|1 month ago

Who's going to vet the applicants to ensure that they're not secretly working for bad people, and that as soon as they have sufficient permissions/lack of oversight they'll inject malware into the project and ship it?

We're seeing ever-increasing supply chain attacks. All these bazaar projects are vulnerable to that.

It's going to take some serious funding to get the kind of oversight we actually need to secure this stuff properly.

And the clock's ticking - those maintainers from the 90's are going to retire, and we need to have some way of replacing them

unknown|1 month ago

[deleted]

luplex|1 month ago

idk, without the sovereign tech agency it would be fewer people, or they would have less time to work on the project. You can't expect the German government to completely fill any need for resources in open source software.