Wired

Security Researchers Warn a Widely Used Open Source Tool Poses a 'Persistent' Risk to the US

Since Russian troops invaded Ukraine more than three years ago, Russian technology companies and executives have been widely sanctioned for supporting the Kremlin. That includes Vladimir Kiriyenko, ...
TMCnet

tea.xyz Flags Critical Open-Source Supply-Chain Risks In 2026

ZUG, Switzerland, Jan. 16, 2026 (GLOBE NEWSWIRE) -- tea.xyz has announced their new ecosystem findings highlighting ...
TechRepublic

What’s Next for Open Source Software Security in 2025?

What’s Next for Open Source Software Security in 2025? Your email has been sent Hidden dependencies, social engineering attacks, and the complexity of foundation models can all contribute tothe ...
SiliconANGLE

Sonar acquires open-source security specialist Tidelift

SonarSource SA, which does business as Sonar, said today that it has signed a definitive agreement to acquire Tidelift Inc., a provider of services to manage open-source components. Terms weren’t ...
LinuxInsider

Open Source Security at Risk From Poor Oversight

Open-source software has become a prime target in the escalating wave of cybersecurity threats. As attacks grow more sophisticated, the open-source community is racing to close critical security gaps ...
dbta

Sonar’s Tidelift Acquisition Bolsters Code Quality and Security for Open Source

Sonar, the code quality and security leader, sets its sights on Tidelift, a provider of software supply chain security solutions for mitigating open source software risk, having entered a definitive ...
LinuxInsider

Open Source in 2026 Faces a Defining Moment

Open source enters 2026 as core enterprise infrastructure, with growing pressure around sustainability, governance, funding, ...