RSVP: How to reduce your organization's reliance on "bad" open source packages
For maintainers
Login
For maintainers
Log in
Product
Overview
Scope of support
Pricing
Schedule demo
Solutions
USE CASES
Validated open source
package intelligence
Open source management
and policy compliance
Compliance with government
cybersecurity requirements
Open source cybersecurity
risk mitigation
INDUSTRY
Healthcare
Insurance
Telecommunications
Financial services
Media
Schedule demo
Resources
All resources
Case Stories
xz backdoor hack
Log4Shell
Guides & Reports
Webinars
Analyst
Documentation
Videos
Blog
Surveys
Government resources
xz backdoor hack resources
Company
About Tidelift
Press
Contact us
Partnerships
Events
Join the Tidelift team
Blog
Book a custom demo
Featured
The npm package of the Moment: How Tidelift migrated from a deprecated Javascript package
Moment.js is a popular date-handling library that, at one point, was being downloaded nearly 15 million times a week. Despite its popularity, ...
by
Sofia Javed
on November 15, 2022
Sofia Javed
Recent Posts
This is a search field with an auto-suggest feature attached.
There are no suggestions because the search field is empty.
Filter by Topic
Maintainers
(98)
Lifters
(81)
Managed open source
(53)
Events
(49)
Upstream
(40)
Government
(39)
open source software supply chain
(39)
Data
(29)
Open Source Software
(28)
Survey
(28)