<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Featured

Tidelift at RSA 2024

We are excited to be heading back to San Francisco for RSA this year! RSA brings together cybersecurity leaders and peers to explore our critical ...
Kristina Kaldenbach
by Kristina Kaldenbach
on May 1, 2024

Upstream rewind: the 2023 keynote, the accidental supply chain, and what it means today

By Caitlin Bixby on April 30, 2024
As we count down to this year’s Upstream, we’ll be looking back at Upstream moments from years past. Discover how topics may have changed and how ...

New report from Atlantic Council finds paying maintainers can positively impact open source security

By Lauren Hanford on April 23, 2024
A new report just out last week from the Digital Forensic Research Lab (DFRLab) at the Atlantic Council found that open source projects with funding ...

Is xz actually an open source success story?

By Jeremy Katz on April 17, 2024
It’s been just over two weeks since we all learned about a backdoor that had been slowly and carefully placed in the xz-utils library over a period ...

Paying maintainers: the HOWTO

By Luis Villa on April 15, 2024
As part of the xz discussion, some asserted that “paying maintainers doesn’t work—we tried to give people money and they wouldn’t take it.” Suffice ...

Maintainer panel: Hear from maintainers in a post-xz utils backdoor world

By Amy Hays on April 15, 2024
A few weeks ago, a very sinister, sophisticated hack was uncovered in an obscure but ubiquitous Linux library called xz utils.

Upstream rewind: the 2023 Upstream maintainer panel and the insights that resonate in 2024

By Caitlin Bixby on April 11, 2024
As we count down to this year’s Upstream, we’ll be looking back at Upstream moments from years past. Discover how topics may have changed and how ...

The ROI of paying open source maintainers (in light of the xz utils backdoor)

By Lauren Hanford on April 8, 2024
As we continue to watch the attempted xz utils backdoor hack unfold, I’ve been following several conversations where questions are being raised about ...

xz utils hack: what is it?

By Luis Villa on April 2, 2024
Late last week, a developer noticed some unusual behavior on their computer, investigated it, and uncovered a hack of epic scope, in an obscure but ...

5 of the Python packages most relied upon for AI are powered by Tidelift maintainer partners

By Kacey Bradford on March 19, 2024
For those of you who may have been living under a rock for the last year, Artificial Intelligence (AI) and Machine Learning (ML) are now at the ...

Don't miss the latest from Tidelift

Filter by Topic