TMCnet

ActiveState Unifies 79M Components to Launch World's Largest Secure Open Source Catalog

The ActiveState catalog grew to 40 million components in mid 2025 when it introduced coverage for Java and R in addition to ...

How Boards Can Turn Open Source Into A Winning Business Strategy

Open-source risk is often simplistically reduced to security headlines about the latest vulnerability or bug count. Security matters, of course, but it is only one dimension of a broader risk surface ...
CSOonline

Do Insecure Open Source Components Threaten Your Apps?

Since Apache Maven, the brainchild of Sonatype founder Jason van Zyl, emerged as a top-level Apache Software Foundation project in 2003, the Central Repository has become a primary source of open ...
Nextgov

Securing open source software is a team sport

Two years ago, the joint government-private sector response to the Log4j vulnerability that spawned 800,000 attacks worldwide led to the Enduring Security Framework for federal agencies adopting open ...
Sify

A Complete Guide To Open-Source Software

Imagine designing a super-fun game which you can play because you possess the secret rules to it, a.k.a. the code. Now, what ...
Business Wire

Lineaje Unveils First-of-its-Kind Open-Source Manager to Advance Continuous Software Supply Chain Security

SARATOGA, Calif.--(BUSINESS WIRE)--Lineaje, a leader in continuous software supply chain security management, today unveiled Open-Source Manager (OSM). The comprehensive, first-of-its-kind solution ...
CSOonline

Malicious open-source software packages have exploded in 2024

The open-source development ecosystem has experienced a significant rise in malicious software components, putting enterprises on high alert for software supply chain attacks. Malware is infiltrating ...
Forbes

The Hidden Risk Lurking In The Software Supply Chain: Transitive Open-Source Dependencies

Varun Badhwar is CEO & Co-Founder at Endor Labs. Previously, he built Prisma Cloud for Palo Alto Networks following the RedLock acquisition. Packages arriving late, stores out of stock or overstocked, ...
SiliconANGLE

Chainguard nabs $140M to secure enterprise applications’ open-source components

Less than a year after closing its last funding round, Chainguard Inc. today disclosed that it has raised another $140 million to support its sales growth. Redpoint Ventures, Lightspeed Venture ...
Washington Technology

Recent signs show the government is getting open source right. Is your organization?

White House and OMB initiatives are driving security concerns around open source because while it is a powerful tool, it needs to be managed effectively, our expert writes. Against a backdrop of ...
SD Times

CAST announces new tool for tracking lifespan of open-source components

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
TechCentral

Vibe coding is transforming development – but at what cost to open source?

Vibe coding’s transformative impact on developer productivity is having adverse consequences for the open-source ecosystem, ...