A reflection of the Department of Homeland Security logo in the eyeglasses of a cybersecurity analyst (Mark J. Terrill/AP/File) There’s no question that open-source software is central to the ...

Two years ago, the joint government-private sector response to the Log4j vulnerability that spawned 800,000 attacks worldwide led to the Enduring Security Framework for federal agencies adopting open ...

The operators of leading open source software (OSS) package repositories, including the Python Software Foundation and the Rust Foundation, have set out the actions they are taking to help better ...

CodeMender has been generating fixes for vulnerabilities in open source projects Google says its AI-powered security repair tool CodeMender has been helping secure open source projects through ...

In 2024, open-source technology will face increased scrutiny as its prolific use, including in proprietary coding, raises the need for pervasive security screening. Open-source libraries, valued by ...

In February, The Linux Foundation’s Open Source Security Foundation (OpenSSF) initiated the Open Source Project Security Baseline (OSPS Baseline) to establish minimum security requirements for ...

The AUSA is a nonprofit educational and professional development association serving America’s Army and supporters of a strong national defense. AUSA provides a voice for the Army, supports the ...

The Steam Deck was a revolution in mobile gaming for PC, but it was also one for a reason most people weren't aware of: bringing Linux to the masses. The Steam Deck runs SteamOS, its own custom ...

The latest trends and issues around the use of open source software in the enterprise. Sysdig is on a mission. That mission is one designed to unite millions of cloud security professionals and ...

A Microsoft developer has found a backdoor in a software package of a compression library widely used in Linux systems that could have resulted in a massive software supply chain attack. The author of ...

It may be time to rotate some keys. The venerable PuTTY was updated to 0.81 this week, and the major fix was a change to how ecdsa-sha2-nistp521 signatures are generated. The problem was reported on ...