The open source blind spot in our supply chains

Supply chain attacks are increasing in volume, but open source vulnerabilities continue relatively unnoticed.
Security Boulevard

NetRise Launches Provenance to Map Who Is Behind Open Source Components and How Risk Spreads

NetRise launched NetRise Provenance on March 24 at RSAC 2026, a new product that adds contributor-level visibility to software supply chain analysis.
CSOonline

Malicious open-source software packages have exploded in 2024

The open-source development ecosystem has experienced a significant rise in malicious software components, putting enterprises on high alert for software supply chain attacks. Malware is infiltrating ...
SiliconANGLE

Chainguard nabs $140M to secure enterprise applications’ open-source components

Less than a year after closing its last funding round, Chainguard Inc. today disclosed that it has raised another $140 million to support its sales growth. Redpoint Ventures, Lightspeed Venture ...
Morningstar

ActiveState Unifies 79M Components to Launch World's Largest Secure Open Source Catalog

ActiveState has grown its secure catalog to 79M, doubling coverage from 2025 and expanding to more than 12 languages. Open source software powers 96% of modern software applications, with most ...
Business Wire

Lineaje Unveils First-of-its-Kind Open-Source Manager to Advance Continuous Software Supply Chain Security

SARATOGA, Calif.--(BUSINESS WIRE)--Lineaje, a leader in continuous software supply chain security management, today unveiled Open-Source Manager (OSM). The comprehensive, first-of-its-kind solution ...
InfoWorld

Beware open source violations lurking in your code

IT organizations that feel safe from open source licensing violations might be wise to check their code, as open source components are rapidly seeping into applications by way of offshore and in-house ...