Open-source developers are tired of being taken advantage of by technology giants. Larger companies with practically unlimited resources are swooping into open-source projects, leveraging the work for their own monetary gain, and leaving smaller companies to fend for themselves. Recently, a group of disgruntled developers and companies took to the Commons Clause as a way … continue reading
Storj Labs announced a new Open Source Partner Program this week designed to generate revenue for open-source projects and companies. The way the programs works by generating revenue as users of open-source partner software store data in the cloud, Storj Labs explained. This new program can be looked at as an open source and cloud … continue reading
Open source is celebrating its 20th anniversary, and so is the Apache License. The Apache License is a permissive free software license that is currently in its third iteration. The license allows customers to use intellectual property for any purpose, such as modifying or distributing it. According to Roman Shaposhnik, member of the Apache Software … continue reading
The GNOME Foundation has announced it is moving to GitLab. GNOME is a free and open-source software desktop project. According to GitLab, GNOME is one of the older and largest free software projects. While the project is known for its desktop, it has a “history of producing critical pieces of software infrastructure: common parts of … continue reading
Npm, Inc. has announced it is acquiring ^Lift Security and its Node Security Platform. ^Lift Security is an application security and penetration testing solution provider. The acquisition is meant to add to npm’s initiatives of improving the security of open-source software, as well as creating products that enable companies to securely develop JavaScript. According to … continue reading
GitHub is identifying key open-source project trends to be on the lookout this year based on its contributor, visitor and star activity data. The company took the top 100 projects with the largest increase in contributors, identified the top 100 projects with the most visitors, and took into account the top 100 projects with the … continue reading
Tomorrow marks the 20th anniversary of open-source software. More specifically, tomorrow marks the 20th anniversary of the term “open source.” The phrase was coined by Christine Peterson, the cofounder and past president of the nontech public interest group Foresight Institute. After 20 years, Peterson is revealing more insight into how the use of the term open-source … continue reading
Java developers should be more aware of the open source software components they put in their applications if they want to avoid a security breach. A new report release by Veracode, a CA Technologies company, revealed 88% of Java apps include at least one vulnerable component, and about 53.3% of Java apps rely on a … continue reading
A new GraphQL server is now available for all Node.js frameworks. Apollo Server is a open-source GraphQL server that is community-maintained and works across: Express, Connect, Hapi, Joa, AWS Lambda, Restify and Micro. The Apollo team announced version 1.0 of the server this week. It is built for the community, for simplicity and for performance. … continue reading
The government agency known for its secrecy is shedding some light on its work this week. The National Security Agency (NSA) has joined GitHub with more than 30 open source projects as part of the NSA Technology Transfer Program. “The NSA Technology Transfer Program (TTP) works with agency innovators who wish to use this collaborative … continue reading
Google released OSS-Fuzz five months ago with a mission to make open-source projects stable, secure and reliable. Since then, the continuous fuzzing solution has found more than 1,000 bugs with 264 of them flagged as potential security bugs. “OSS-Fuzz has found numerous security vulnerabilities in several critical open source projects: 10 in FreeType2, 17 in … continue reading
It has been three years since the Heartbleed bug plagued the Internet, and the Linux Foundation’s Core Infrastructure Initiative (CII) was formed. As the organization embarks on the next three years, it is making new structure funding decisions, and hoping to do “less fire-fighting” and “more strategizing.” The CII is introducing new membership levels; a … continue reading
