The ActiveState catalog grew to 40 million components in mid 2025 when it introduced coverage for Java and R in addition to ...

Open-source risk is often simplistically reduced to security headlines about the latest vulnerability or bug count. Security matters, of course, but it is only one dimension of a broader risk surface ...

Less than a year after closing its last funding round, Chainguard Inc. today disclosed that it has raised another $140 million to support its sales growth. Redpoint Ventures, Lightspeed Venture ...

Open source software (OSS) has become a cornerstone of contemporary digital infrastructure, offering unprecedented opportunities for innovation, cost efficiency and collaborative development. Research ...

The open-source development ecosystem has experienced a significant rise in malicious software components, putting enterprises on high alert for software supply chain attacks. Malware is infiltrating ...

Vibe coding’s transformative impact on developer productivity is having adverse consequences for the open-source ecosystem, ...

Imagine designing a super-fun game which you can play because you possess the secret rules to it, a.k.a. the code. Now, what ...

Two years ago, the joint government-private sector response to the Log4j vulnerability that spawned 800,000 attacks worldwide led to the Enduring Security Framework for federal agencies adopting open ...

The struggle between open source and proprietary software is well understood. But the tensions permeating software circles for decades have shuffled into the artificial intelligence space, in part ...

In 2020, the SolarWinds incident served as a wake-up call for the tech industry, highlighting the urgent need for organizations to refine their response strategies to critical CVEs (common ...

Today’s article will shift direction from my last post to focus specifically on how customers may influence your open source software policy in respect to open source license compliance. The context ...