<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Featured

Tidelift CEO and co-founder Donald Fischer talks cybersecurity requirements for organizations selling software to the U.S. government

In response to an increase in cybersecurity attacks, from the SolarWinds hack on proprietary software to the Log4Shell incident on the open source ...
Caitlin Bixby
by Caitlin Bixby
on August 31, 2023

Selling software to the U.S. government? Know security attestation first; a recap

By Kristina Kaldenbach on August 15, 2023
For the past two years, the U.S. government has put a magnifying glass on cybersecurity with various executive orders and requirements. In just the ...

New RFI shows the U.S. gov effort to invest in open source is picking up steam 🚂

By Luis Villa on August 10, 2023
Today, the U.S. Office of the National Cyber Director (ONCD) released a request for information (RFI) entitled Open-Source Software Security: Areas ...

Tidelift advisory: How the National Cybersecurity Strategy Implementation Plan impacts open source

By Donald Fischer on July 13, 2023
This week, the White House unveiled its implementation plan for the strategies outlined in the National Cybersecurity Strategy that was originally ...

Upstream recap: Donald Fischer talks open source software supply chain security with Boeing and Cisco

By Caitlin Bixby on July 11, 2023
On June 7th, for the third year in a row, we hosted Upstream, a virtual, one-day celebration of open source, the developers who use it, and the ...

Tidelift CEO & co-founder Donald Fischer discusses government requirements and the impact on DevSecOps

By Caitlin Bixby on June 29, 2023
Yesterday, Tidelift CEO and co-founder Donald Fischer sat down with Techstrong TV’s Michael Vizard to discuss the latest government requirements and ...

Tidelift advisory: OMB Memo M-23-16 clarifies U.S. government secure software development attestation requirements and deadlines, including for open source

By Donald Fischer on June 10, 2023
On June 9, 2023, the U.S. government Office of Management and Budget released memorandum M-23-16 as an update to the guidance for enhancing the ...

Maintainers to industry: We don’t have the time nor money to do more.

By Chris Grams on May 11, 2023
In late 2022, Tidelift fielded its second survey of open source maintainers. Hundreds of maintainers responded with thoughts about getting paid for ...

Maintainers are being asked to do more security work. Over 50% didn’t get the memo.

By Chris Grams on May 9, 2023
In late 2022, Tidelift fielded its second survey of open source maintainers. Hundreds of maintainers responded with thoughts about getting paid for ...

Tidelift advisory: How the proposed CISA self-attestation form impacts open source

By Lauren Hanford on May 1, 2023
On April 27, CISA released a proposed draft of the long-awaited self-attestation form organizations selling software to the government will need to ...
  • There are no suggestions because the search field is empty.

Don't miss the latest from Tidelift

Filter by Topic