Open Source & More - Blog | Tidelift

Featured

Tidelift briefing: What you need to know about the Log4Shell vulnerability

It’s Wednesday, December 15, 2021. It has been a mad scramble over the last few days to understand the impact of the Log4Shell vulnerability (first ...

by Mark Galpin
on December 15, 2021

Log4Shell highlights the need to proactively cooperate with open source maintainers at scale

By Luis Villa on December 14, 2021

Over the weekend, there was much ado on tech Twitter about the Log4Shell vulnerability and the reality of unpaid maintainers being asked to shoulder ...

Tidelift advisory | Log4Shell critical vulnerability: what you need to know and do

By Jeremy Katz on December 11, 2021

In this advisory, we will address the core facts regarding the recently disclosed security vulnerability in the Apache log4j project, which has been ...

RSVP: How to reduce your organization's reliance on "bad" open source packages

Featured

Tidelift briefing: What you need to know about the Log4Shell vulnerability

Log4Shell highlights the need to proactively cooperate with open source maintainers at scale

Tidelift advisory | Log4Shell critical vulnerability: what you need to know and do

Don't miss the latest from Tidelift

Filter by Topic

Address

Tidelift

Product

Resources

For Maintainers