<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Featured

Digging into the data: Open source software repo supply chain attacks

I had just wrapped up some internal Tidelift research on open source software supply chain compromises a few weeks ago when I saw PyPI's announcement ...
Tieg Zaharia
by Tieg Zaharia
on August 2, 2022

Finding #6: The top programming languages organizations rely on are JavaScript, Python, and Java

By Chris Grams on November 10, 2020
Tidelift's annual managed open source survey explores how technologists use open source to build applications at work. Over 600 people shared how ...

How Tidelift helps urllib3 maintainer Seth Larson support more Python versions and release streams

By Kate Mancuso on September 29, 2020
One of the most popular packages on PyPI, urllib3, is continuing to maintain backwards compatibility with Python 2 and 3.5, while charging ahead on a ...

How urllib3 maintainer Seth Larson streamlined the release process

By Amy Hays on August 18, 2020
Seth Larson has a history of adopting unmaintained open source libraries. It’s not that he seeks out orphaned packages—it’s usually because an ...

Package signing across package managers

By Tieg Zaharia on June 11, 2020
Package signing across package managers Recently I looked at the state of 2FA support across package managers. 2FA adds a layer of security by ...

PyParsing is now part of the Tidelift Subscription

By Brenna Heaps on March 26, 2020
PyParsing is a Python parsing module that offers an alternative approach to creating and executing simple grammars—without the traditional lex/yacc ...

Why coordinated security vulnerability disclosure policies are important

By Jeremy Katz on January 21, 2020
We believe that working with maintainers to create coordinated security vulnerability policies is important. Why? Here’s one story to illustrate.

Thousands of packages are eligible for income on Tidelift. Here’s how to search the growing list.

By Keenan Szulik on September 5, 2019
When we hosted our first ever lifter event earlier this year, we asked the open source maintainers in attendance to imagine the future of open ...

Claudiu Popa, and finding the time to work on Pylint

By Amy Hays on March 21, 2019
Claudiu Popa, core maintainer of Python linter Pylint, became involved with the project by fixing a couple bugs. It’s a common tale in the world of ...

Don't miss the latest from Tidelift

Filter by Topic