I’m looking for a way to keep an eye on open source software I’m using, especially if there are detrimental changes. Like for example when there’s an acquisition (Raivo Authenticator) or the project has not been updated in a long time (potentially posing a security risk).
But I don’t want to have to read about every project, just the ones I’m using.
Anyone got any ideas?
Install your software from the repository of a well-run distribution that has a focus on free software.
If the software is unmaintained or changes its license, the distro’s maintainers will drop it and look for a replacement.
It’s literally their (unpaid) job.