Systematic study identifying 37 challenge aspects for OSS maintainers. Supply chain mistrust and lack of automation are most challenging barriers.
Why read: Most comprehensive academic study of barriers to security tooling adoption from the maintainer perspective. Identifies the specific barriers a zero-config tool would need to address.
Anna Hermansen, Linux Foundation Research · 2024-01-31
Survey finding 69% of contributors want defined best practices, 39% still do manual code review, top approach is SCA/SAST tools.
Why read: Provides the community's own voice on what they want (defined best practices, reduced fatigue through automation) — directly relevant to the article's thesis.