SiliconANGLE

Truffle Security secures $25M to protect codebases from leaked secrets and nonhuman identities

Open-source security software company Truffle Security Co. announced today that it has raised $25 million in new funding to fuel continued growth of TruffleHog Enterprise, the company’s ...
The Hacker News

The State of Trusted Open Source

Analysis shows most security risk sits in longtail open source images, with 98% of CVEs outside top projects & Critical flaws ...
Ars Technica

Supply-chain attacks on open source software are getting out of hand

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with successful breaches of multiple developer accounts that resulted in malicious ...
Dark Reading

DARPA: Closing the Open Source Security Gap With AI

Open source components continue to cause huge problems for security practitioners, and AIxCC was created to determine whether automation could help close the gap. At DEF CON 33, DARPA announced the ...
CSOonline

Open Source

Caught before it could do widespread damage, the sophisticated vulnerability could have been one of the highest-impact software supply chain breaches to date.
ZDNet

Linux will be unstoppable in 2026 - but one open-source legend may not survive

The Linux desktop will continue to grow. Linux and open-source security will both improve. Firefox is in deep, deep trouble. Clearly, AI will play a larger role in Linux and open source next year, but ...