The open-source ecosystem poses different challenges for the consumers and maintainers. How do consumers know which open-source projects they can trust in their projects? How do maintainers handle their hobby projects evolving into a widespread, critical dependency? What happens to abandoned projects? This talk will highlight these problems, and also showcase some of the work that the Node.js Package Maintenance team is doing to try and help solve these problems in the Node.js ecosystem.