<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Featured

Maintainers to industry: We don’t have the time nor money to do more.

In late 2022, Tidelift fielded its second survey of open source maintainers. Hundreds of maintainers responded with thoughts about getting paid for ...
Chris Grams
by Chris Grams
on May 11, 2023

Maintainers are being asked to do more security work. Over 50% didn’t get the memo.

By Chris Grams on May 9, 2023
In late 2022, Tidelift fielded its second survey of open source maintainers. Hundreds of maintainers responded with thoughts about getting paid for ...

Tidelift advisory: How the proposed CISA self-attestation form impacts open source

By Lauren Hanford on May 1, 2023
On April 27, CISA released a proposed draft of the long-awaited self-attestation form organizations selling software to the government will need to ...

Tidelift CEO & co-founder Donald Fischer discusses the U.S. National Cybersecurity Strategy and what it means for organizations building with open source software

By Caitlin Bixby on April 13, 2023
Tidelift CEO & co-founder Donald Fischer recently sat down with Enterprise Security Weekly to discuss the U.S. National Cybersecurity Strategy, a ...

Introducing TACOS: Trusted Attestation and Compliance for Open Source

By Lauren Hanford on April 4, 2023
In the previous blog posts of this series, I talked about the NIST Secure Software Development Framework and its impact on open source software, and ...

Tidelift advisory: Securing Open Source Software Act advances in U.S. Senate

By Donald Fischer on March 30, 2023
Yesterday, the U.S. Senate Committee on Homeland Security and Governmental Affairs voted to advance bipartisan legislation to help strengthen the ...

The U.S. National Cybersecurity Strategy and what it means for open source maintainers

By Lyn Muldrow on March 29, 2023
On March 2nd, the U.S. government issued the long anticipated 2023 National Cybersecurity Strategy, the next step in a series of recent actions ...

Webinar: How the NIST Secure Software Development Framework impacts open source software

By Caitlin Bixby on March 22, 2023
In May 2021, the U.S. government issued Executive Order 14028 on Improving the Nation’s Cybersecurity in response to increasing digital threats such ...

Webinar recap: What the new U.S. national cybersecurity strategy means for open source software

By Caitlin Bixby on March 16, 2023
Last week, Tidelift co-founder and CEO Donald Fischer hosted a webinar briefing on the new U.S. cybersecurity strategy and what it means for ...

How the NIST Secure Software Development Framework impacts open source software, p.2

By Lauren Hanford on March 15, 2023
In my previous blog post I shared some thoughts regarding why organizations developing applications with open source components should be paying ...

Don't miss the latest from Tidelift

Filter by Topic