Slide 1
Slide 1 text
Holly Cummins
Sanne Grinovero
Monki Gras - March 19, 2026
Fixing The
Open Source
Bus Number
Slide 2
Slide 2 text
https://xkcd.com/2347
Slide 3
Slide 3 text
Distribution of maintainers
number of OSS projects
https://opensourcesecurity.io/2025/08-oss-one-person/
by Josh Bressers
Slide 4
Slide 4 text
Challenges for open source
Slide 5
Slide 5 text
Lack of funding
Slide 6
Slide 6 text
Lack of time
Slide 7
Slide 7 text
Maintainer burnout:
doing it on top of a full time job
Slide 8
Slide 8 text
Slop PRs make
it way worse
Slide 9
Slide 9 text
No content
Slide 10
Slide 10 text
Maintainer
boredom
Slide 11
Slide 11 text
User boredom
Slide 12
Slide 12 text
User hostility
(or just lack of appreciation)
Slide 13
Slide 13 text
‐ Layoffs
‐ Re-assignment
Sponsoring company
strategy shifts
Slide 14
Slide 14 text
Attacks to
inject
backdoors
Slide 15
Slide 15 text
Hostile forks
Slide 16
Slide 16 text
Hostile clones
Slide 17
Slide 17 text
Lazy clones
Slide 18
Slide 18 text
No content
Slide 19
Slide 19 text
“Build is the New Buy”
- - Steve Yegge
Slide 20
Slide 20 text
Code has lost its value
Slide 21
Slide 21 text
But open source still has value
does it? :( :(
Slide 22
Slide 22 text
Hardened base components
Slide 23
Slide 23 text
Trust
Slide 24
Slide 24 text
Secure supply chain
Slide 25
Slide 25 text
Familiar to LLMs
Slide 26
Slide 26 text
Agents will use your code better
if they can read the source
Slide 27
Slide 27 text
Community and collaboration,
for some of us :)
Slide 28
Slide 28 text
“Bag of cats”, tracking down zillions of forks and
deciding which to use would be terrible
Spec and tests is the hardest
part, community maintains
these
Slide 29
Slide 29 text
What value do maintainers
bring?
Slide 30
Slide 30 text
Maybe it’s not about code
anymore?
Slide 31
Slide 31 text
Guardians of quality +
performance
Slide 32
Slide 32 text
Consistent mission + vision
Slide 33
Slide 33 text
- “anti-roadmap” (pushing
back is hard when everything is
easy, but it’s still important)
Slide 34
Slide 34 text
- own the roadmap
Slide 35
Slide 35 text
- providing guardrails, applying
shared principles to PRs
Slide 36
Slide 36 text
- maintain performance
Slide 37
Slide 37 text
Maintainers
matter.
Slide 38
Slide 38 text
What about
the bus?
Slide 39
Slide 39 text
We have the technology to deal with epistemic debt
Losing technical knowledge
less of a concern these days
Slide 40
Slide 40 text
Epistemic Debt?
The unconscious loss of
understanding of a project
Slide 41
Slide 41 text
Losing keys is still very bad :)
Slide 42
Slide 42 text
Losing the mission and
understanding of the brand: bad
Slide 43
Slide 43 text
Conclusion: The bus is still bad
Slide 44
Slide 44 text
How do we fix the bus?
Slide 45
Slide 45 text
Money,
money,
money.
Slide 46
Slide 46 text
Long term license
guarantees
Slide 47
Slide 47 text
Maintenance
(people writing code)
Slide 48
Slide 48 text
‐ Knowledge
‐ Key sharing
Continuity planning
Slide 49
Slide 49 text
Trademarks
Legal protections
Slide 50
Slide 50 text
Experience report
How does Quarkus fix the bus?
Slide 51
Slide 51 text
Convenient solution:
a foundation
Slide 52
Slide 52 text
But …
Slide 53
Slide 53 text
Solution: A new foundation!
Slide 54
Slide 54 text
https://xkcd.com/927/
Slide 55
Slide 55 text
Beware Not Invented Here
Slide 56
Slide 56 text
The Quarkus Foundation?
Slide 57
Slide 57 text
Introducing:
Slide 58
Slide 58 text
No content
Slide 59
Slide 59 text
A legal framework to
accept donations
Slide 60
Slide 60 text
Unlocks free stuff!
‐ 1Password (for all open source)
‐ Scarf.sh (Commonhaus partnership)
‐ Gradle Develocity (Commonhaus partnership]
“Proper OSS” stamp of approval
Slide 61
Slide 61 text
‐ trust
‐ continuity
Trademark management
Slide 62
Slide 62 text
Succession
planning
Slide 63
Slide 63 text
What if the
money runs out?
Slide 64
Slide 64 text
No content
Slide 65
Slide 65 text
Assets have to go to
another non-profit
Slide 66
Slide 66 text
A project in a foundation will
be open source forever
Slide 67
Slide 67 text
Beyond a foundation
Slide 68
Slide 68 text
Simple mechanics can
help a lot
Slide 69
Slide 69 text
Resilience through
idiot-proofing
Slide 70
Slide 70 text
Resilience through
road-paving
Slide 71
Slide 71 text
Enrich existing systems to
reduce friction
Slide 72
Slide 72 text
No content
Slide 73
Slide 73 text
‐ Common keys
‐ Release scripts
‐ Common Terraform-iness
‐ Org-level privileges to avoid
abandon-ware
●
Slide 74
Slide 74 text
What helps project survival?
Slide 75
Slide 75 text
‐ Consulting services
‐ Commercial support
‐ Extended lifecycle
Make profit possible
Slide 76
Slide 76 text
Integrations to vendors
Slide 77
Slide 77 text
Keep it interesting
Slide 78
Slide 78 text
Conclusions
Slide 79
Slide 79 text
Open source is a multiplier
Slide 80
Slide 80 text
Maintainers are the heart of
open source
Slide 81
Slide 81 text
Open source is not just
“hosted on GitHub”
Slide 82
Slide 82 text
A network of trust is
everything
Slide 83
Slide 83 text
https://xkcd.com/2347 (modified)
Slide 84
Slide 84 text
https://hollycummins.com/monkigras-bus-factor/