Thinking out loud about infrastructure, open-source, and building software for the web. Sometimes I think too loudly, and sometimes before actually reaching a conclusion. Dialogue welcome, hit me up on the socials.
In a recent CIRA panel discussion on digital sovereignty, one panelist seemed to have lost the plot on what digital sovereignty means and why it's important. I suggest digital sovereignty is a risk mitigation strategy that no enterprise or nation can afford to ignore.
In response to Joost de Valk's post saying that open source is the right start but not enough, I suggest some conditions needed for healthy open source projects. Without proper governance and a model that ensures sustainability, a briefcase full of funding could kill a project as easily as stimulating it.
Supply chain security ensures you get what you asked for, but not whether what you asked for is safe. Establishing trust in software requires verifiable provenance with cryptographically attributable identity for the publisher.
A modest May 2026 gathering in Atlanta felt like a seminal moment for the open source enterprise CMS market in North America, which is currently facing uncertainty and upheaval. TYPO3 is stepping in boldly.
Skip to main content 
