Links: SOSSA and CRA Spell Trouble for Open Source Software

SOSSA and CRA Spell Trouble for Open Source Software

Joe Brockmeier has written an excellent summary on pending legislation in the US and the EU that may negatively impact open source software. Both are attempts by government to try and get some accountability around software distribution to help avoid another Log4j incident, but both are heavy-handed and incorrectly target open source authors instead of commercial vendors who bundle open source components into their products.

Sadly I have moved all of my own code out of SourceHut, a fully open source alternative to GitHub, back into GitHub because SourceHut is hosted inside the EU. If these laws are corrected before they go into affect, I’ll likely move my personal code back over to SourceHut. Until then, I will be using GitHub again.