Add question about better dependence and vulnerability management to Part 2

todogroup / osposurvey

Open Source Programs (OSPO) Survey

https://todogroup.org

Creative Commons Attribution Share Alike 4.0 International

70 stars 26 forks source link

Add question about better dependence and vulnerability management to Part 2 #86

Closed sstruble closed 3 years ago

sstruble commented 3 years ago

Part 2/Question 15 - add line item about better dependency and vulnerability management.

LawrenceHecht commented 3 years ago

Reasonable suggestion. Counterpoints: 1) Adding this would make time series analysis less relevant. 2) It would be great if we were more specific about how to quantify dependency and vulnerability management.

Counter suggestion. Add the new category, don't do time series comparison, but also fix other categories that are hard to quantify.