Hidden dependencies, social engineering attacks, and the complexity of foundation models can all contribute tothe insecure use of open-source software in 2025. Open-source software is common ...

In a pivotal move to enhance cybersecurity earlier this year, the White House Office of the National Cyber Director, in partnership with the Open-Source Software Security Initiative, unveiled an RFI ...

Chainguard's new Athena coalition uses AI to fix open-source flaws - before attackers exploit them ...

Microsoft shut down dozens of GitHub code repositories for Azure and AI coding tools after a reported hack.

Two years ago, the joint government-private sector response to the Log4j vulnerability that spawned 800,000 attacks worldwide led to the Enduring Security Framework for federal agencies adopting open ...

New York, United States, June 8th, 2026, TechnologyWire Minimus today announced the general availability of Minimus Supply ...

Hannah Dacayanan of UnitedLex discusses ways in which automated software composition analysis tools identify open source ...

SonarSource SA, which does business as Sonar, said today that it has signed a definitive agreement to acquire Tidelift Inc., a provider of services to manage open-source components. Terms weren’t ...

In February, The Linux Foundation’s Open Source Security Foundation (OpenSSF) initiated the Open Source Project Security Baseline (OSPS Baseline) to establish minimum security requirements for ...

It'll remain open-source, though.

Open source security incidents aren't going away. The reliance on open source software (OSS) increases year-over-year, with more than 95% of all software, including open source, in some capacity. From ...