Distributions handle this for you. Installing your software through a distro, instead of getting it from each individual software authour, means that you trust one organisation instead of hundreds of individuals.
For instance, Debian has a strict set of guidelines for Debian developers (who have the right to upload packages). They will be familiar with the software they are packaging, are often independent from the upstream authours, and are expected to check the package for various issues, including licensing, security, version incompatibilities etc. In addition, every upload is signed, so you can see who is responsible for everything.
And when something slips through, as almost happened with xz, the analysis and recovery all happens completely in the open. There may not have been enough eyes on xz to prevent the vulnerability in the first place, but once it was discovered, there were at at least hundreds of people dealing with the aftermath, all in the open.
Compare this with proprietary software, where you’d be lucky if such a vulnerability was even disclosed, vs just silently patched.
Completely agree with this! The big opportunities to get mindshare will come completely out of the blue, and likely as a result of massive blunders on Adobe’s side.
We never know when the blunders will come, we just have to be ready and provide the next best user experience so that the free software is the “obvious” place to switch to.
As we saw from the twitter/reddit migrations, the fediverse did get a large amount of traction, but bluesky became the obvious alternative because its UI was basically the same.
And that’s fine - the fediverse is it’s own thing and many people (myself included) don’t want “adoption at all costs” - but I think it’s worth pointing out that it does hinder adoption in these big moments.
I have a lot of respect for free software projects that deliberately replicate the UI of an existing proprietary project. They make it so easy to recommend for people to switch when those moments come.
What I have seen is that once people get a taste of free software that really easily solves their problem, it makes the benefits “real” to them and they start to look for other alternatives on their own.