Companies are treating these repositories like content delivery networks - now the Linux Foundation and colleagues are saying ...

Project Glasswing scans open-source code for vulnerabilities. But open source was already the most scrutinized software on earth. The real exposure is everywhere else ...

NHS England is pulling its open-source software from the internet because of fears around computer-hacking AI models like ...

Every time a developer types npm install, they are placing a bet that the package they are pulling into their project is not ...

Over the last decade, enterprises have transformed the way they build software. What used to be mostly proprietary code is now dominated by open-source components. In many cases, more than 80% of an ...

New Linux Foundation initiative convenes registry leaders to develop shared approaches to funding, governance, and long-term ecosystem resilience. Maven Central Repository The World's Largest Open ...

The Office of the National Cyber Director wants software providers to "contribute back to the security of the open source software they depend upon." The federal government wants public input on how ...

Anthropic says it is testing a powerful new AI model that can spot serious weaknesses in software, and releasing it as part of a locked down coalition called Project Glasswing.

It uses Opus 4.7 to scan, validate, and generate patches, helping fix dangerous flaws before they can be exploited.

Today, Senator Jim Banks (R-Ind.) sent a letter to the Department of Commerce encouraging the Bureau of Industry and Security ...

The danger in the code came from characters that are invisible to the human eye. In early March researchers at several security firms examined what looked like empty space and found hidden Unicode ...