One question we sometimes get when talking to customers: how does Tidelift fit in with software composition analysis (SCA) tools, like Black Duck, ...
We are excited to be sponsoring the Open Source in Finance Forum again this year in New York on November 1! The Open Source in Finance Forum brings ...
Vulnerability scanning, also referred to as software composition analysis (SCA), has been around for two decades. For most, being alerted about known ...
Is your organization struggling to track the usage of open source packages across development teams? When downloading open source packages, does your ...
We regularly feature posts from our maintainer partners. In this case, we asked Python maintainer Hynek Schlawack to share his thoughts on how being ...
Open source changes at a breathtaking rate in modern software development. Development teams make many choices each day about what packages to start ...
Pay the maintainers! That’s our rallying cry at Tidelift, so we were delighted to read a new article from The New Stack by Heather Joslyn succinctly ...
The updates from the government regarding open source cybersecurity have been coming fast over the past several months and it can be hard to know ...
The Cybersecurity and Infrastructure Security Agency (CISA) just released the Open Source Software Security Roadmap, the latest step in the U.S. ...