SUPPLYSHIELD combines large-scale AI systems with human validation to maintain secure versions of libraries across the full dependency tree. When new vulnerabilities are disclosed, the platform ...

ActiveState has grown its secure catalog to 79M, doubling coverage from 2025 and expanding to more than 12 languages. Open source software powers 96% of modern software applications, with most ...

Less than a year after closing its last funding round, Chainguard Inc. today disclosed that it has raised another $140 million to support its sales growth. Redpoint Ventures, Lightspeed Venture ...

Hoping to take the worry and pain out of deploying open source applications with proprietary software, SpikeSource on Tuesday formally launched its first product and services to help with such an ...

OpenText, The Information Company, is debuting OpenText Debricked Open Source Select, a solution aimed toward helping developers select the right open source components that align with company intake ...

A recent report highlighted that nearly a third of business leaders have seen an increase in cyber attacks targeting their supply chains. The focus, understandably, has been on supplier concentration, ...

SARATOGA, Calif.--(BUSINESS WIRE)--Lineaje, a leader in continuous software supply chain security management, today unveiled Open-Source Manager (OSM). The comprehensive, first-of-its-kind solution ...

Software developers use a large number of open-source components, often oblivious to the security risks they introduce or the vulnerabilities that are later discovered in them. Sonatype, a company ...

IT organizations that feel safe from open source licensing violations might be wise to check their code, as open source components are rapidly seeping into applications by way of offshore and in-house ...

The number of codebases containing at least one open source vulnerability increased by nine percentage points in 2020, according to a new report from Synopsys, the silicon design company behind open ...

A growing body of academic research warns that AI-assisted “vibe coding,” where language models assemble software from open-source components with minimal human oversight, is creating hidden costs for ...