Vulnerability scanning, also referred to as software composition analysis (SCA), has been around for two decades. For most, being alerted about known ...
Is your organization struggling to track the usage of open source packages across development teams? When downloading open source packages, does your ...
We regularly feature posts from our maintainer partners. In this case, we asked Python maintainer Hynek Schlawack to share his thoughts on how being ...
Open source changes at a breathtaking rate in modern software development. Development teams make many choices each day about what packages to start ...
Pay the maintainers! That’s our rallying cry at Tidelift, so we were delighted to read a new article from The New Stack by Heather Joslyn succinctly ...
The updates from the government regarding open source cybersecurity have been coming fast over the past several months and it can be hard to know ...
The Cybersecurity and Infrastructure Security Agency (CISA) just released the Open Source Software Security Roadmap, the latest step in the U.S. ...
We are excited to be sponsoring DevOps World in the NYC area on September 14! We were bummed when this event was postponed last year but looking ...
On June 7th, for the third year in a row, we hosted Upstream, a virtual, one-day celebration of open source, the developers who use it, and the ...
50 Milk St, 16th Floor, Boston, MA 02109
.svg){kind=icon}