/
posts
Posts
Dev log entries from building OpenVet.
Reactive vs proactive supply-chain security
Why OpenVet bets on proactive audits instead of CVEs, SBOMs, signed releases, and dependency cooldowns.
Licensing of audits hosted on the OpenVet Registry
Why the OpenVet Registry will require audits to be published under CC0 or CC-BY-4.0, and how that decision is encoded in the audit data structure.
Supply-Chain Update #1
Summarized articles about software supply-chain security, vulnerabilities, attacks and mitigations from early May 2026
Hello, OpenVet
Why I'm building OpenVet, what it does, and what to expect from this blog.