1. It’s never just about how good the technology is
The technology you buy is a long-term commitment on your part. You need it to be a long-term commitment on the supplier’s part, too.
To play it safe, IT used to buy from big vendors. Now? Not only can open source be just as safe, sometimes you can get it from IBM or other big vendors.
Not every open source technology has a broad enough base of support, but many do. If PHP, for example, will do the job, would you look at Java twice given its awful security track record? And yet Java is supported (perhaps “provided” would be more accurate) by Oracle, one of the biggest software companies in the world.
This isn’t entirely new, either. The open-source-like SHARE library dates to the 1970s, after all.