<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">


Tidelift advisory: Final CISA Secure Software Development Attestation Form released

On Monday March 11, CISA and the Office of Management and Budget (OMB) released the final version of the Secure Software Development Attestation Form ...
Donald Fischer
by Donald Fischer
on March 12, 2024

Software liability changes are coming. Are you ready?

By Donald Fischer on March 6, 2024
This week, CyberScoop reported on new developments in U.S. software cybersecurity liability:

New White House ONCD report highlights importance of proactive approach to software security

By Donald Fischer on February 26, 2024
This morning, the U.S. White House Office of the National Cyber Director (ONCD) released a new report entitled Back to the Building Blocks: A Path ...

Tidelift co-founder Luis Villa talks Wikipedia, government regulations, and AI with FLOSS Weekly

By Caitlin Bixby on November 8, 2023
Open source software security has gained the attention of governments in the U.S. and E.U., especially in the wake of the Log4Shell vulnerability. ...

Tidelift CEO and co-founder Donald Fischer talks cybersecurity requirements for organizations selling software to the U.S. government

By Caitlin Bixby on August 31, 2023
In response to an increase in cybersecurity attacks, from the SolarWinds hack on proprietary software to the Log4Shell incident on the open source ...

Tidelift VP of product Lauren Hanford discusses TACOS and SBOMs with daBOM podcast 🌮

By Caitlin Bixby on August 15, 2023
Tidelift VP of product Lauren Hanford sat down with daBOM podcast to discuss the TACOS framework and why SBOMs are just the beginning to a more ...

Tidelift advisory: How the National Cybersecurity Strategy Implementation Plan impacts open source

By Donald Fischer on July 13, 2023
This week, the White House unveiled its implementation plan for the strategies outlined in the National Cybersecurity Strategy that was originally ...

Upstream recap: Donald Fischer talks open source software supply chain security with Boeing and Cisco

By Caitlin Bixby on July 11, 2023
On June 7th, for the third year in a row, we hosted Upstream, a virtual, one-day celebration of open source, the developers who use it, and the ...

Tidelift advisory: OMB Memo M-23-16 clarifies U.S. government secure software development attestation requirements and deadlines, including for open source

By Donald Fischer on June 10, 2023
On June 9, 2023, the U.S. government Office of Management and Budget released memorandum M-23-16 as an update to the guidance for enhancing the ...

How to meet impending government self-attestation deadlines for open source software

By Caitlin Bixby on May 3, 2023
On September 14, 2022, the Executive Office of the President, Office of Management and Budget released memorandum M-22-18, a direct follow-up to ...

Don't miss the latest from Tidelift

Filter by Topic