"You may find it hard to believe, but there are critical open-source programs, such as Kubernetes' Ingress-NGINX, that are dying for lack of support. Now, Chainguard, a cybersecurity company focused on securing the software supply chain, is stepping up with EmeritOSS to keep such programs alive. EmeritOSS is a stability-focused program that preserves and secures mature, popular, but unmaintained open-source projects, starting with Kaniko, Kubeapps, and Ingress-NGINX."
"Chainguard describes EmeritOSS as "sustainable stewardship for mature open source," targeting widely used projects that have reached functional maturity but lost active maintainers or been archived. The goal is not to add new features, but to provide safe, predictable maintenance, so organizations can run critical workloads while planning migrations or adopting successor technologies. EmeritOSS focuses on projects that remain deeply embedded in production environments, where sudden archival or abandonment can create security and operational risk."
EmeritOSS provides sustained, stability-focused stewardship for mature open-source projects that have lost active maintainers or been archived. The program preserves and secures widely used, production-embedded software rather than adding new features, enabling organizations to continue running critical workloads while planning migrations or adopting successors. Maintenance efforts include creating public, stability-focused forks, updating dependencies, issuing releases with vulnerability fixes, and documenting support scope and service levels. Initial supported projects include Kaniko, Kubeapps, and Ingress-NGINX. Additional archived or unmaintained projects will be added to the program based on demand and operational need.
Read at ZDNET
Unable to calculate read time
Collection
[
|
...
]