IBM commits $5 billion to secure open-source software

May 28 (Reuters) - IBM said on Thursday it has committed $5 billion to an initiative that will deploy engineers and AI tools ...
TechRepublic

What’s Next for Open Source Software Security in 2025?

Hidden dependencies, social engineering attacks, and the complexity of foundation models can all contribute tothe insecure use of open-source software in 2025. Open-source software is common ...

Open-source security is a mess - IBM and Red Hat bet $5 billion and 20,000 engineers can fix it

Open-source security is a mess - IBM and Red Hat bet $5 billion and 20,000 engineers can fix it ...
Nextgov

Strengthening open source: A roadmap to enhanced cybersecurity

In a pivotal move to enhance cybersecurity earlier this year, the White House Office of the National Cyber Director, in partnership with the Open-Source Software Security Initiative, unveiled an RFI ...
InfoWorld

IBM and Red Hat want to become the ‘security clearinghouse’ for open source applications in the enterprise

The $5 billion Project Lightwell initiative combines AI systems with 20,000 engineers to deliver validated fixes directly ...
Stocktwits on MSN

IBM wants to become the 'security layer' for open source AI infrastructure – and it's spending $5B to prepare

Project Lightwell expands IBM and Red Hat’s enterprise open source model, taking it beyond their traditional product ...
SiliconANGLE

Sonar acquires open-source security specialist Tidelift

SonarSource SA, which does business as Sonar, said today that it has signed a definitive agreement to acquire Tidelift Inc., a provider of services to manage open-source components. Terms weren’t ...
Nextgov

Securing open source software is a team sport

Two years ago, the joint government-private sector response to the Log4j vulnerability that spawned 800,000 attacks worldwide led to the Enduring Security Framework for federal agencies adopting open ...
VentureBeat

How open-source LLMs enable security teams to stay ahead of evolving threats

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Open-source large language models (LLMs) ...
Business Wire

Lineaje Redefines Software Supply Chain Security with Agentic AI-Driven Risk Elimination, Gold Open Source and SCA360

SARATOGA, Calif.--(BUSINESS WIRE)--Lineaje, the full-lifecycle software supply chain security company, today launched end-to-end capabilities that will fundamentally transform how organizations ...
LinuxInsider

Is a Security Baseline Enough for Open-Source Software?

In February, The Linux Foundation’s Open Source Security Foundation (OpenSSF) initiated the Open Source Project Security Baseline (OSPS Baseline) to establish minimum security requirements for ...
Dark Reading

Open Source Security Incidents Aren't Going Away

Open source security incidents aren't going away. The reliance on open source software (OSS) increases year-over-year, with more than 95% of all software, including open source, in some capacity. From ...