Hackers have compromised dozens of popular open source packages in an ongoing supply chain attack

The attacks are part of a wider campaign known as Mini Shai-Hulud, which has already compromised several open source projects ...
How-To Geek on MSN

5 open-source projects that quietly hold together the world's internet

Often thankless, always needed. These are the projects that make the internet work as well as it does.
Dark Reading

Code-Injection Bugs Bite Google, Apache Open Source GitHub Projects

A pair of security vulnerabilities discovered in the GitHub environments of two very popular open source projects from Apache and Google could be used to stealthily modify project source code, steal ...
Geeky Gadgets

New Open Source AI Projects : How Collaboration is Beating Big Tech

What if the future of artificial intelligence wasn’t locked behind corporate walls, but instead, open for everyone to explore, innovate, and shape? The rise of open source AI is turning this vision ...
Forbes

Open Source Project With Little Revenue In Talks To Raise At Least $160 Million

The startup behind popular Github project vLLM is out fundraising, as venture capitalists hunt for companies building tech that can make AI systems run more efficiently. Investors are about to wager ...
Searchenginejournal.com

Why Open Source Projects Are Run By Benevolent Dictators For Life

A recent post on X (formerly Twitter) called attention to the fact that many popular open source projects, like WordPress, are run by a single person, often referred to as a Benevolent Dictator For ...
TechCrunch

North Korea’s hijack of one of the web’s most used open source projects was likely weeks in the making

A North Korean cyberattack that last Monday briefly hijacked one of the most widely used open source projects on the web took weeks to carry out as part of a long-running campaign to target the code’s ...
Ars Technica

OpenAI is acquiring open source Python tool-maker Astral

OpenAI announced Thursday that it has entered into an agreement to acquire Astral, the company behind popular open source Python development tools such as uv, Ruff, and ty, and integrate the company ...
TechCrunch

The startup behind open source tool Polars raises $21M from Accel

Polars, the Amsterdam-based company behind the popular open source project of the same name, has raised €18 million (about $21 million) in a Series A round led by Accel, with participation from Bain ...
LinuxInsider

Is a Security Baseline Enough for Open-Source Software?

In February, The Linux Foundation’s Open Source Security Foundation (OpenSSF) initiated the Open Source Project Security Baseline (OSPS Baseline) to establish minimum security requirements for ...
InfoWorld

Is AI killing open source?

Open source has never been about a sprawling community of contributors. Not in the way we’ve imagined it, anyway. Most of the software we all depend on is maintained by a tiny core of people, often ...