The biggest problem I've noticed is that I see the same names over and over. There aren't a lot of users submitting patches or issues (especially without prompting). I definitely don't see a lot of users commenting on issues and pull requests, and I think that needs to change.
The OSSEC development team is very small, and we have limited access to resources (especially time). It would be great if other users started testing out some of these changes, and report successes and failures. I've started posting links to some pull requests on twitter in the hopes of interesting people who use those bits of OSSEC.
The ones I pointed out are:
- Appaarmor decoder and rules - Mine, and I don't use apparmor.
- Lines sent to SMTP server need to be terminated with \r\n - Works for me, there is some worry it may not work for everyone.
- Improving the CEF support - I don't use OSSEC and Arcsight together, so I can't do any testing. Plus, I don't know if this will break anything anyone has created.
I know everyone has limited time, but it would benefit a lot of people to get some testing done. Not testing the bits you use can hurt you down the road. I hope to see some new usernames in the future!