<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Featured

Tidelift advisory: New White House OMB guidance impacts organizations building apps with open source

Yesterday, the U.S. government’s Office of Management and Budget (part of the Executive Office of the President) released memorandum M-22-18 on ...
Donald Fischer
by Donald Fischer
on September 15, 2022

Donald Fischer

Donald Fischer

Recent Posts

$33.5M to improve open source software supply chain resilience with help from AEI HorizonX and Cisco Investments

By Donald Fischer on September 13, 2022
We’re excited to announce today that Tidelift has extended our Series C financing to $33.5 million with additional investments from AEI HorizonX, AE ...

New NSA, CISA, ODNI best practices for securing the open source software supply chain

By Donald Fischer on September 6, 2022
Last week, in a response to the ever-growing list of software supply chain attacks (SolarWinds and Log4Shell specifically), the U.S. National ...

Tidelift’s take on the U.S. Cyber Safety Review Board Report on Log4Shell vulnerability

By Donald Fischer on July 15, 2022
Yesterday, the U.S. Department of Homeland Security released the first report from the recently created Cyber Safety Review Board (CSRB), reviewing ...

A people-centric way forward for the open source software supply chain

By Donald Fischer on June 7, 2022
Today at Tidelift’s annual Upstream event, I’m giving a talk entitled Software + People: An optimistic (and practical) way forward for the open ...

$27m to improve open source health and security with Tidelift’s partnered maintainers

By Donald Fischer on May 24, 2022
Today we’re excited to announce that Tidelift has closed on $27 million of Series C funding, led by Dorilton Ventures with participation by Kaiser ...

FTC warns of legal action for failure to protect against open source vulnerabilities—here’s how you can minimize risk

By Donald Fischer on January 7, 2022
This week, in response to the ongoing fallout from the Log4Shell vulnerability, the United States Federal Trade Commission issued an alert warning ...

Thinking upstream about the White House cybersecurity executive order 14028

By Donald Fischer on May 19, 2021
The upstream parable Stop me if you’ve heard this one before.

Tidelift advisory | Impacts of the new White House cybersecurity executive order 14028 on application development teams

By Donald Fischer on May 13, 2021
Yesterday, the White House issued a much anticipated executive order on improving the cybersecurity of the United States. I’d like to share some of ...

Introducing Upstream: A free one-day celebration of open source, the developers who use it, and the maintainers who create it

By Donald Fischer on April 6, 2021
Open source is an amazing testament to human ingenuity.

Don't miss the latest from Tidelift

Filter by Topic