This is a brief interruption to note that some security is semi-scripted. I have been working on another project as co-host for the Compiler podcast‘s upcoming season: The New Security Landscape. While it would be untrue to say this is the reason these podcasts have slowed down to roughly once per month (once a week turned out to be a little too ambitious!), I’m noting it here because the upcoming 8-episode season is entirely devoted to security so if you like Security Unscripted you’ll love the new season of the Compiler podcast.

How dire is the state of security when it comes to open source, particularly the “problem” of maintainers? It’s a tricky situation given all that’s going on. There’s developer burnout, the lack of gratitude (and funding) from end users, and ever-increasing demands for regulation and secure development. It sounds like a kettle that’s starting to boil over, but perhaps it isn’t all doom and gloom — if we can move forward properly.