Open source designs offer flexibility, yet they also create long-term dependency paths that may hide more risk than developers expect. Many companies now treat container security as the first real ...

Corporations strategically control markets with open-source software. The community participates without realizing that the ...

Chainguard has announced a partnership with Cursor that directly addresses one of the fastest-growing risks in software development: trusting code generated by AI agents. As development workflows ...

The Linux Foundation’s LF Networking (LFN) group is now home to the O-RAN Software Community (O-RAN SC). The O-RAN SC was ...

Software engineering has experienced two seismic shifts this century. First was the rise of the open source movement, which ...

The Tech Giants and Giant Slayers report argues that the UK’s over-reliance on foreign tech companies is an urgent national ...

New capabilities embed software supply chain integrity directly into development workflows, enabling real-time ...

The founding members note that they have designed the DocLang AI-native standard in order to “revolutionise enterprise document processing” (no less), by providing a unified, AI-readable format to ...

Joint solution closes the software supply chain trust gap with secure-by-default artifacts for engineering teams building ...

Open source container security improves audit readiness, reduces vulnerability remediation costs, enhances transparency ...

Securing software supply chain without slowing developmentSupply chain attacks exploit the trust relationships between different organisations and target the weakest link in the chain of trust. By ...

Backed by Sonatype's industry-leading security research team, Sonatype Repository Firewall helped customers prevent 136,107 open source malware attacks in Q1. To explore the full findings from the Q1 ...