
The Ghost in the Dependency Tree: Navigating Open Source End-of-Life with HeroDevs
From What's in the SOSS? An OpenSSF Podcast by OpenSSF
June 2, 2026 · 27 min · Season 3 · Episode 14
About this episode
The episode discusses the challenges of End-of-Life software in the open source ecosystem with insights from Isaac Wuest of HeroDevs.
In this episode of What’s in the SOSS, host CRob sits down with Isaac Wuest, Product Line Leader at HeroDevs, to explore the critical and often overlooked "gray area" of the software supply chain: End-of-Life (EOL) software. While the industry heavily relies on CVEs to track vulnerabilities, Isaac explains how maintainer abandonment creates a vacuum where risks are present but remain undiscovered and unreported. From the origins of HeroDevs supporting AngularJS to the nuances of the EU Cyber ...
People in this episode
Host: CRob
Guest: Isaac Wuest
Topics covered
- Open Source
- End-of-Life Software
- Software Supply Chain
- Vulnerabilities
- Maintainer Abandonment
Keywords
- End-of-Life
- software supply chain
- vulnerabilities
- maintainer abandonment
- open source
Mentioned in this episode
Organizations: HeroDevs, AngularJS, EU Cyber
More episodes of What's in the SOSS? An OpenSSF Podcast
- Beginner to Builder: Shaping the Conversation in Open Source Security · May 19, 2026 · 26 min
- Packaging, Transferring, and Deploying Software in Air-Gapped Environments with Zarf · May 5, 2026 · 19 min
- Building a Connected Africa: The Origin Story of OSSAfrica with Prince Asiedu · April 21, 2026 · 27 min
- Big Thoughts, Open Sources Inaugural Episode: Beyond the Hype: Brian Fox on Securing the Agentic Future of Open Source · April 7, 2026 · 29 min
- From Noise to Signal: Security Expertise and Kusari Inspector with Mike Lieberman · March 24, 2026 · 25 min
- Empowering New Maintainers: Inside the OpenSSF Mentorship Program · March 17, 2026 · 23 min
Explore listener stats, chart rankings, contacts and more on the What's in the SOSS? An OpenSSF Podcast podcast page.