RSVP: How to reduce your organization's reliance on "bad" open source packages
For maintainers
Login
For maintainers
Log in
Product
Overview
Scope of support
Pricing
Schedule demo
Solutions
USE CASES
Validated open source
package intelligence
Open source management
and policy compliance
Compliance with government
cybersecurity requirements
Open source cybersecurity
risk mitigation
INDUSTRY
Healthcare
Insurance
Telecommunications
Financial services
Media
Schedule demo
Resources
All resources
Case Stories
xz backdoor hack
Log4Shell
Guides & Reports
Webinars
Analyst
Documentation
Videos
Blog
Surveys
Government resources
xz backdoor hack resources
Company
About Tidelift
Press
Contact us
Partnerships
Events
Join the Tidelift team
Blog
Book a custom demo
Featured
Digging into the data: Open source software repo supply chain attacks
I had just wrapped up some internal Tidelift research on open source software supply chain compromises a few weeks ago when I saw PyPI's announcement ...
by
Tieg Zaharia
on August 2, 2022
This is a search field with an auto-suggest feature attached.
There are no suggestions because the search field is empty.
Filter by Topic
Maintainers
(97)
Lifters
(81)
Managed open source
(53)
Events
(48)
Government
(39)
Upstream
(39)
open source software supply chain
(39)
Data
(28)
Open Source Software
(28)
Survey
(28)