Open Source & More - Blog | Tidelift

Featured

Tidelift at RSA 2023

We are excited to be a first-time sponsor of the RSA conference in San Francisco this year! RSA brings together cybersecurity leaders and peers to ...

by Kristina Kaldenbach
on April 19, 2023

Tidelift at SecureWorld NYC 2022

By Kristina Kaldenbach on October 12, 2022

We are excited to be sponsoring SecureWorld New York City on October 13! SecureWorld connects, informs, and develops leaders in cybersecurity through ...

Tidelift at CISO Forum 2022

By Kristina Kaldenbach on September 12, 2022

Tidelift is excited to be sponsoring our first SecurityWeek event, CISO Forum! This is a virtual event taking place Sept. 13-14. CISO Forum is ...

New NSA, CISA, ODNI best practices for securing the open source software supply chain

By Donald Fischer on September 6, 2022

Last week, in a response to the ever-growing list of software supply chain attacks (SolarWinds and Log4Shell specifically), the U.S. National ...

Tidelift completes SOC 2 Type 2 examination

By Jeremy Katz on August 16, 2022

Security reigns supreme here at Tidelift. Because we are in the business of helping your organization ensure its supply chain is secure and ...

Tidelift’s take on the U.S. Cyber Safety Review Board Report on Log4Shell vulnerability

By Donald Fischer on July 15, 2022

Yesterday, the U.S. Department of Homeland Security released the first report from the recently created Cyber Safety Review Board (CSRB), reviewing ...

Deadline alert: OMB cybersecurity list of "critical software" due by Oct. 9

By Amy Hays on October 7, 2021

Back in May, the U.S. White House released cybersecurity executive order 14028, an attempt by the government to use its buying power to prevent high ...

Why coordinated security vulnerability disclosure policies are important

By Jeremy Katz on January 21, 2020

We believe that working with maintainers to create coordinated security vulnerability policies is important. Why? Here’s one story to illustrate.

The 2023 Tidelift state of the open source maintainer report. Read it now! 📖

Featured

Tidelift at RSA 2023

Tidelift at SecureWorld NYC 2022

Tidelift at CISO Forum 2022

New NSA, CISA, ODNI best practices for securing the open source software supply chain

Tidelift completes SOC 2 Type 2 examination

Tidelift’s take on the U.S. Cyber Safety Review Board Report on Log4Shell vulnerability

Deadline alert: OMB cybersecurity list of "critical software" due by Oct. 9

Why coordinated security vulnerability disclosure policies are important

Don't miss the latest from Tidelift

Filter by Topic

Tidelift

Product

Resources

For Maintainers