A hacker inserted malware in Axios, an open-source web tool downloaded tens of millions of times weekly, in a widespread hack ...

Malware in open source software is no longer a fringe threat--it's accelerating at an unprecedented rate. In 2025 alone, more than ...

A growing body of academic research warns that AI-assisted “vibe coding,” where language models assemble software from ...

The full breadth of this incident is still unclear, but given the popularity of the compromised package, we expect it will ...

A new hacking group has been rampaging the Internet in a persistent campaign that spreads a self-propagating and never-before ...

The TeamPCP hacking group has hacked the Telnyx PyPI package as part of a supply chain campaign targeting the broad OSS ecosystem.

Over the last decade, enterprises have transformed the way they build software. What used to be mostly proprietary code is now dominated by open-source components. In many cases, more than 80% of an ...

The ease with which developers can integrate third-party open source code has created a security and sustainability crisis, according to a senior executive at edge cloud platform Fastly. Speaking to ...

Minimus, the leader in hardened container images and secure container software, today announced the Minimus Open Source ...

The Office of the National Cyber Director wants software providers to "contribute back to the security of the open source software they depend upon." The federal government wants public input on how ...

Compliance continues to drive adoption of trusted open source: We saw the same themes from December present here, underscored ...

Recently I was watching a keynote address by Canonical founder and creator of Ubuntu, Mark Shuttleworth, who spoke about his vision for Ubuntu to provide quality support and security maintenance ...