<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Featured

The npm package of the Moment: How Tidelift migrated from a deprecated Javascript package

Moment.js is a popular date-handling library that, at one point, was being downloaded nearly 15 million times a week. Despite its popularity, ...
Sofia Javed
by Sofia Javed
on November 15, 2022

Recap: October 13th Deep Dive: AI Society panel

By Caitlin Bixby on November 10, 2022
A few weeks ago, Tidelift co-founder and general counsel Luis Villa joined Kat Walsh, general counsel at Creative Commons, Carlos Muñoz Ferrandis, AI ...

urllib3: how the maintainers keep the project secure and healthy (and why you should care) part 3

By Bill Nottingham on November 9, 2022
Have you ever wondered what the open source maintainers that your business relies on do to keep our software healthy and secure? Here’s the third and ...

Fireside chat: Why this CISO thinks SBOMs aren’t the silver bullet

By Caitlin Bixby on November 8, 2022
Software bills of materials (or SBOMs) have been all over the news this year. Here’s a quick refresher on how that came to pass:

New Coveros secure software supply chain management service powered by the Tidelift Subscription

By Matt Rollender on November 7, 2022
It is great to be back in Orlando, FL this week at the Agile + DevOps East Conference! We’re also pleased to share that we are now partnering with ...

Resilient open commons

By Luis Villa on November 3, 2022
Open source software is often loosely referred to as a “commons,” but we rarely think deeply about what that means. Elinor Ostrom, ...

Recap: The importance of a sound open source software supply chain management strategy

By Caitlin Bixby on November 2, 2022
On October 13th, Tidelift’s senior product marketing lead, Kanish Sharma, sat down with guest speaker Jim Mercer, IDC Research vice president, to ...

urllib3: how the maintainers keep the project secure and healthy (and why you should care) part 2

By Bill Nottingham on November 2, 2022
Have you ever wondered what the open source maintainers that your business relies on do to keep our software healthy and secure? Here’s the second in ...

Tidelift advisory | OpenSSL 3.0.x X.509 Buffer Overflow Vulnerabilities: what you need to know and do

By Jeremy Katz on November 1, 2022
In this advisory, we will address the core facts regarding the recently disclosed security vulnerability in the OpenSSL project, how important it is ...

Evaluating the RAIL license family

By Luis Villa on November 1, 2022
Evaluating the RAIL license family Machine learning (ML) is the hot topic in tech circles right now, and tech lawyers are no exception. Virtually ...

Don't miss the latest from Tidelift

Filter by Topic