How to navigate impending open source software security requirements. RSVP now! 🗺️
For maintainers
Login
For maintainers
Log in
Product
PRODUCT
Overview
Scope of Support
Pricing
SOLUTIONS
Solutions
Schedule demo
Resources
All resources
Case Stories
Log4Shell
Guides & Reports
Webinars
Analyst
Documentation
Videos
Blog
Surveys
Government resources
Company
About Tidelift
Press
Contact us
Partnerships
Events
Join the Tidelift team
Blog
Schedule demo
Featured
Tidelift advisory: New White House OMB guidance impacts organizations building apps with open source
Yesterday, the U.S. government’s Office of Management and Budget (part of the Executive Office of the President) released memorandum M-22-18 on ...
by
Donald Fischer
on September 15, 2022
New NSA, CISA, ODNI best practices for securing the open source software supply chain
By
Donald Fischer
on September 6, 2022
Last week, in a response to the ever-growing list of software supply chain attacks (SolarWinds and Log4Shell specifically), the U.S. National ...
Thinking upstream about the White House cybersecurity executive order 14028
By
Donald Fischer
on May 19, 2021
The upstream parable Stop me if you’ve heard this one before.
Filter by Topic
Maintainers
(60)
Lifters
(57)
Managed open source
(57)
Events
(41)
Data
(27)
Open Source Software
(26)
Dependencies
(25)
NPM
(25)
Developers
(24)
JavaScript
(22)