GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.

The Open Source Security Foundation (OpenSSF), a cross-industry initiative of the Linux Foundation focused on sustainably ...

Hidden dependencies, social engineering attacks, and the complexity of foundation models can all contribute tothe insecure use of open-source software in 2025. Open-source software is common ...

Many software companies rely on open-source code but lack consistency in how they measure and handle risks and vulnerabilities associated with open-source software, according to a new report. Endor ...

The Linux Foundation, a nonprofit organization enabling mass innovation through open source, today announced the release of “Census III of Free and Open Source Software—Application Libraries” (Census ...

Interest continues to build for creating a safer open source software ecosystem, in part because of the code vulnerability Log4Shell, which one recent report predicts will pose a risk for the next ...

It’s a topic of fierce debate among high-tech cognoscenti: What’s more secure – “open source” code such as Linux and Apache, or proprietary “closed source” operating systems and applications, ...

In the past decade or so, open source software has become a critical component of many companies' tech stacks. The proliferation of cloud computing and artificial intelligence (AI) accelerated this ...

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Open-source large language models (LLMs) ...

Going closed source now feels like the wrong move.

Underlying the proliferating memes about the CloudStrike update fail is a certain smugness that such things won’t happen to you. Yes, it’s true that Microsoft may be particularly susceptible to such ...

Open-source EDA tools are free, readily available, and growing in numbers, but many chipmakers are wary of using them due to security concerns. On the plus side, proponents say these tools can help ...