<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">


Lunch and learn: How to comply with mandatory government cybersecurity requirements impacting open source

If your organization has any contracts with the U.S. government, then you probably already know that the government has recently begun taking actions ...
Margot van den Broek
by Margot van den Broek
on September 6, 2023

Tidelift advisory: New White House OMB guidance impacts organizations building apps with open source

By Donald Fischer on September 15, 2022
Yesterday, the U.S. government’s Office of Management and Budget (part of the Executive Office of the President) released memorandum M-22-18 on ...

New NSA, CISA, ODNI best practices for securing the open source software supply chain

By Donald Fischer on September 6, 2022
Last week, in a response to the ever-growing list of software supply chain attacks (SolarWinds and Log4Shell specifically), the U.S. National ...

Thinking upstream about the White House cybersecurity executive order 14028

By Donald Fischer on May 19, 2021
The upstream parable Stop me if you’ve heard this one before.

Don't miss the latest from Tidelift

Filter by Topic