I’m looking for a way to keep an eye on open source software I’m using, especially if there are detrimental changes. Like for example when there’s an acquisition (Raivo Authenticator) or the project has not been updated in a long time (potentially posing a security risk).
But I don’t want to have to read about every project, just the ones I’m using.
Anyone got any ideas?
I think it’s mostly related to LICENSE file. For example Redis and now Valkey. Otherwise some eye-catching issue drama on repo. As long as the license is truely FOSS like GPL v3 then in 99% cases you should be fine.