Wherever you stand in the ISV/MSP/licensing/sustainability debate, I believe open source sustainability is a global debate. In 2019, I identified a few elements that are missing in the conversation: incidence of "income inequality" problem, definition and negative influence of "freeloaders", role of "codes of conduct", and differences between "recognition" and "survivability".

I've built Linux distributions of various sizes, from a consumer-focused one that has millions of end users to custom-built Linux desktop distros for the Enterprise. Nowadays, I focus on researching how distro package management and distro release cadence and security are relevant to the open source software supply chain problem.

• GitHub - bureado/awesome-software-supply-chain-security: A compilation of resources in the software supply chain security domain, with emphasis on open source
• Popular dependency acquisition patterns in containers
• Traversing deb packages upstream provenance and downstream integrity
• Post-modern Linux packaging: additional reading

Most of my writing lives in GitHub Gists or DEV/bureado. I have presented at several open source-focused conferences from Argentina to Tunisia, with slides often available in Speaker Deck. Here's some of my recent work:

• 2022:
  • GitHub - bureado/awesome-software-supply-chain-security: A compilation of resources in the software supply chain security domain, with emphasis on open source
• 2021:
  • Popular dependency acquisition patterns in containers
  • Traversing deb packages upstream provenance and downstream integrity
• 2020:
  • The Role of Customer-partner-vendor Collaboration in Enterprise Open Source Strategy
• 2019:
  • Lessons learned running Linux-based workloads on Azure at Microsoft Ignite 2019
  • Interview: Emerald City Tech Conversations Hosted by Adron Hall in 2019
• Archive:
  • Deploying Linux to the cloud at OSCON 2018
  • Package Management and Distribution in a Cloud World at Open Source Summit Japan 2017 in Tokyo
  • Interview: Red Hat + Microsoft partnership at Red Hat Summit 2016
  • End to end Node.js app development in the cloud at Node Live 2016 in Beijing
  • 2016 sessions covering early aspects of open source support in Azure: Fabric & Apps and Data both at Microsoft Build 2016
  • Another blast from the past: Open source based container solutions on Azure at DockerCon Meetup 2016 in Shanghai
  • Enterprises cannot survive without open source. Here's why., 2016
  • Article: From open ecosystem to open ambient, 2016