<p>how CISOs think of FOSS developers:</p><p>> Independent FOSS devs are part of the software supply chain in exactly the way rocks are part of the mineral supply chain, for better and worse.</p><p><a href="https://mastodon.social/@dymaxion@infosec.exchange/112200742276136278" target="_blank" rel="nofollow noopener noreferrer" translate="no"><span class="invisible">https://</span><span class="ellipsis">mastodon.social/@dymaxion@info</span><span class="invisible">sec.exchange/112200742276136278</span></a></p>
