It can take an average of over four years for vulnerabilities in open source software to be spotted, an area in the security community that needs to be addressed, researchers say.

Efforts to improve open-source security helped find 6,100 vulnerabilities last year – up over 10 times on a decade ago.

Hackers planted malicious code in open source software packages with more than 2 billion weekly updates in what is likely to ...

In November 2021, a zero-day vulnerability in a ubiquitous piece of open-source code stunned the technology industry and set ...

Ultimately, she maintained, “as the home for open source and 94-plus million developers, GitHub can advance the state of software security more than any other team or platform.” ...

Google LLC today introduced GUAC, an open-source cybersecurity tool that companies can use to find potential vulnerabilities in their software. Google developed GUAC in collaboration with Kusari ...

CISA, Black explained, is now getting involved, launching initiatives to tell businesses what are the best — and worst — security practices when it comes to deploying open source software.

Still, there are four primary arguments in favor of open-source security tools: agility in the face of changing threats, control of one’s own destiny with full source code, customization to one ...

Cybersecurity is an essential aspect of open-source software, as it helps to protect the software from security threats and ensure its integrity. This artcice will explore why it is important to ...

The Securing Open Source Software Act defines tasks for the director of CISA and promotes outreach and engagement with the open source community to improve long-term security of open source software.