IBM, Red Hat launch $5B Project Lightwell to boost open-source security

Red Hat subsidiary today launched an initiative called Project Lightwell to improve the security of open-source projects.
MUO on MSN

These open-source projects have been running for 20+ years — and they're still unfinished

Two decades in, still no version 1.0.

Anthropic AI model finds over 10,000 critical bugs across open-source software projects

The AI startup said around 50 carefully selected partners, including technology firms and research organisations, were given ...

Open-source security is a mess - IBM and Red Hat bet $5 billion and 20,000 engineers can fix it

Open-source security is a mess - IBM and Red Hat bet $5 billion and 20,000 engineers can fix it ...

CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks

Cybercriminals used the Glassworm botnet to infect open source software projects with malware, and in turn hack the ...
InfoWorld

Lack of response to critical vulnerability in Gogs is a reminder of the limits of open source projects

Two months after Rapid7 discovered the hole in the Git service, the project maintainer has yet to patch the bug.
Opinion

Comment: Open-source developers are working themselves sick on AI bugs

Work intensification leads to overload for developers. Companies make billions thanks to open source and give little back, argues Christopher Kunz.
Linux Journal

Debian Experiments with AI-Assisted Bug Triage as Open-Source Projects Face Growing Report Overload

The Debian project has begun exploring AI-assisted bug triage workflows, joining a broader movement across the open-source ...