Open source "died" in March. It just doesn't know it yet (opens in new tab)

> Five supply chain attacks in twelve days.

Open source is fine, but the npm-like model must be improved.

LLM article written by a company selling “Secure-by-default open source software”