<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">


Webinar: How to navigate impending open source software security requirements

Open source security is a top, unavoidable priority in 2023. With a continued barrage of open source supply chain vulnerabilities, the U.S. ...
Caitlin Bixby
by Caitlin Bixby
on February 7, 2023

Save the date: Upstream 2023 is June 7

By Amy Hays on January 31, 2023
Today we’re excited to announce the date for Upstream 2023, which will take place this year on June 7. Upstream is an entirely virtual one-day ...

2023 predictions webinar recap part 1: What is the open source software supply chain and what will government requirements mean for you?

By Caitlin Bixby on January 26, 2023
Last week, Tidelift co-founders Donald Fischer and Luis Villa sat down with a panel of industry thought leaders including RedMonk analysts Stephen ...

How to create an effective open source software supply chain management plan

By Caitlin Bixby on December 13, 2022
Open source helps developers build applications more quickly because they are able to draw from billions of lines of freely available code. However, ...

The npm package of the Moment: How Tidelift migrated from a deprecated Javascript package

By Sofia Javed on November 15, 2022
Moment.js is a popular date-handling library that, at one point, was being downloaded nearly 15 million times a week. Despite its popularity, ...

New Coveros secure software supply chain management service powered by the Tidelift Subscription

By Matt Rollender on November 7, 2022
It is great to be back in Orlando, FL this week at the Agile + DevOps East Conference! We’re also pleased to share that we are now partnering with ...

Let's talk about the hidden challenges of securing the open source software supply chain

By Amy Hays on September 8, 2022
Fact: most application developers love open source because it makes them more productive. Also a fact: Open source brings with it some security and ...

New NSA, CISA, ODNI best practices for securing the open source software supply chain

By Donald Fischer on September 6, 2022
Last week, in a response to the ever-growing list of software supply chain attacks (SolarWinds and Log4Shell specifically), the U.S. National ...

Don't miss the latest from Tidelift

Filter by Topic