<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Featured

Tidelift’s take on the U.S. Cyber Safety Review Board Report on Log4Shell vulnerability

Yesterday, the U.S. Department of Homeland Security released the first report from the recently created Cyber Safety Review Board (CSRB), reviewing ...
Donald Fischer
by Donald Fischer
on July 15, 2022

Donald Fischer

Donald Fischer

Recent Posts

A people-centric way forward for the open source software supply chain

By Donald Fischer on June 7, 2022
Today at Tidelift’s annual Upstream event, I’m giving a talk entitled Software + People: An optimistic (and practical) way forward for the open ...

$27m to improve open source health and security with Tidelift’s partnered maintainers

By Donald Fischer on May 24, 2022
Today we’re excited to announce that Tidelift has closed on $27 million of Series C funding, led by Dorilton Ventures with participation by Kaiser ...

FTC warns of legal action for failure to protect against open source vulnerabilities—here’s how you can minimize risk

By Donald Fischer on January 7, 2022
This week, in response to the ongoing fallout from the Log4Shell vulnerability, the United States Federal Trade Commission issued an alert warning ...

Thinking upstream about the White House cybersecurity executive order 14028

By Donald Fischer on May 19, 2021
The upstream parable Stop me if you’ve heard this one before.

Tidelift advisory | Impacts of the new White House cybersecurity executive order 14028 on application development teams

By Donald Fischer on May 13, 2021
Yesterday, the White House issued a much anticipated executive order on improving the cybersecurity of the United States. I’d like to share some of ...

Introducing Upstream: A free one-day celebration of open source, the developers who use it, and the maintainers who create it

By Donald Fischer on April 6, 2021
Open source is an amazing testament to human ingenuity.

Tidelift advisory: facts about recent wave of software supply chain attacks and how to address them

By Donald Fischer on March 30, 2021
There has been a huge spike in online searches around words like “SolarWinds” and “Hafnium Microsoft Exchange” in recent days and weeks—and for good ...

Tidelift catalogs and the rising urgency of managing your open source supply chain

By Donald Fischer on February 2, 2021
Today, Tidelift is introducing several exciting elements of the Tidelift Subscription that help organizations more efficiently manage the health of ...

Are you struggling to manage your open source artifacts? Tidelift and JFrog can help.

By Donald Fischer on September 24, 2020
Over the past few years, we’ve talked to thousands of organizations using open source as part of their application development process. In fact, our ...

Don't miss the latest from Tidelift

Filter by Topic

See All