A number of security-focused groups have announced they are teaming up on a new open-source project to help secure software supply chains: Protobom. The project was created jointly by the Open Source Security Foundation (OpenSSF), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Homeland Security Science and Technology Directorate (DHS S&T). Protobom allows … continue reading
The first piece of open source code was published just over 70 years ago, and now open-source software finds itself in almost every application that exists today. A 2024 report from Synopsys found that the average application has over 500 open source components in it, and most recent industry reports show that over 95% of … continue reading
The Graph for Understanding Artifact Composition (GUAC) is a project dedicated to enhancing the security of software supply chains that has recently become an incubating project under the Open Source Security Foundation (OpenSSF). This collaborative effort, initiated by Kusari, Google, and Purdue University, is designed to manage dependencies and offer actionable insights into the security … continue reading
This week the Cybersecurity and Infrastructure Security Agency (CISA) held a two day summit with open source software (OSS) leaders, intending to continue its work advancing security of OSS. Over the course of the Open Source Software (OSS) Security Summit, CISA laid out three key actions that it will be taking. First, it will work … continue reading
LinkedIn has announced it is open sourcing its control plane for managing tables in data lakehouse deployments. The tool, called OpenHouse, has been in use at LinkedIn for the past year. The company has 3,500 OpenHouse tables in production currently. It was designed to offer self-service management of tables in open data lakehouses. According to … continue reading
Android announced the release of the latest version of Android Studio, with new features aimed at improving the app development workflow. Among its notable features in Android Studio Iguana is the integration of the version control system within App Quality Insights, which is designed to streamline the development process by providing more detailed insights into … continue reading
FastUI enables developers to create user interfaces through declarative Python code. This framework is particularly beneficial for Python developers, as it allows them to build responsive web applications with React without needing to write JavaScript or interact with npm. It offers frontend developers the advantage of focusing on crafting reusable components, eliminating the need to … continue reading
Unqork unveiled its Winter 2024 Platform Release, which emphasizes modular development capabilities, allowing users to design components and applications that can be widely applied across numerous scenarios. This approach promotes standardization and aims to lower development costs, aligning with Unqork’s strategy to streamline and expedite the digital solution development process, according to Unqork. Among the … continue reading
The Open Source Security Foundation (OpenSSF) released the annual report for its Alpha-Omega project, an initiative that focuses on identifying and remedying vulnerabilities within source code to create a safer digital environment. According to OpenSSF, the Alpha-Omega project has become a pivotal player in enhancing the security infrastructure of open-source software, reflecting a proactive approach … continue reading
Kong recently unveiled a collection of six open-source AI plugins for Kong Gateway 3.6. The plugins offer integration with multiple LLMs and significantly advance AI technology accessibility for developers and platform teams. According to Kong, the goal of this release is to enhance developer productivity by simplifying the integration process of LLMs into various products. … continue reading
Pear Runtime, an open-source peer-to-peer (P2P) app development platform, has been launched by Holepunch, a P2P company backed by Tether. This platform is set to redefine app development by offering a secure, efficient, scalable, and cost-effective solution for developers. With Pear Runtime, developers can create unlimited applications leveraging robust open-source P2P infrastructure, ensuring that they … continue reading
GitHub has just opened up a new cohort for GitHub Accelerator, which is a program that provides funding and support for selected open-source projects. The theme of this cohort will be AI in open-source. “AI is rapidly changing the way we work and live, and open source collaboration is at the core of AI innovation,” … continue reading
