RT @tidelift: Big news! Sonar has entered a definitive agreement to acquire Tidelift to enhance the security and resilience of open source….

Spoke to @PallardyCarrie for @InformationWeek on @CISAgov's Secure by Design pledge, OSS maintainers, and what comes next: . "@tidelift is not only applying the principles in the pledge to its own software, but also helping open source maintainers achieve the pledge goals.".

RT @vdanen: Missed the @tidelift Upstream event? You can watch them on demand now! Particularly my great discussion with Donald Fischer i….

RT @tidelift: Fun fact: this @finosfoundation panel live right now was the first panel we filmed for #Upstream2024 this year! And now is fi….

RT @tidelift: Live now! 📣 #Upstream2024. Two of @CISAgov's leading security experts, @jackhcable & @aevavoom, join @dff to provide insights….

RT @ag_dubs: "companies have a fiduciary duty to their shareholders to invest in their infrastructure and that includes open source" - @ljh….

RT @changelog: 💥 It's a new Changelog & Friends!. 💡 Is it too late to opt out of AI?.🤩 with @luis_in_brief from @tidelift .🫡 with @jerodsan….

RT @thenewstack: The xz Hack Revealed a Looming $8.8 Trillion Infrastructure Disaster @luis_in_brief #xzhack #secur….

"The XZ utils hack brings into stark relief the risks of under-investing in the health and resilience of the open source software supply chain [that] enterprise organizations rely on," @tidelift's @dff says.

RT @tidelift: Software liability changes are coming. Are you ready? 👀. @tidelift CEO @dff shares highlights from new gov't #cybersecurity d….

RT @tidelift: We're so happy to share that @tidelift has officially joined @FINOSFoundation, the Fintech Open Source Foundation! 🎉. Tidelif….

Gutsy manifesto from @unisonweb: Developing cloud software today is complicated in a very strange way: a lot of the work you end up doing is not programming. What could be possible if you rethought this from the programming language up? They did.

RT @tidelift: We’re officially in the new year 🎉 . What’s to come? 🤔. Join us Thurs, Jan. 18 at 2 p.m. ET, when @tidelift co-founders @dff….

RT @drkellyannfitz: Tune in tomorrow to see what my brilliant fellow panelists (@BrittanyIstenes, @ljharb, and @tidelift co-founders @dff &….

Our @tidelift response to @ONCD RFI: . Open source developers are long on passion, but short on time. Pay independent maintainers to ensure, and attest to, the secure software development practices followed by their projects. We brought the data.

What could you do with first-party open source software intelligence data, built in partnership with upstream maintainers? Need to comply with new government cybersecurity regulations? Check out @tidelift's new API & compliance reporting capabilities!

RT @tidelift: This week @CISAgov published the Open Source Software Security Roadmap and in it, the agency highlighted the need to support….

CISA's new Open Source Software Security Roadmap highlights plans to:.🏛 Establish @CISAgov's role in supporting the security of OSS.🔍 Drive visibility into OSS usage and risks.⚡ Reduce risks to the federal government.💎 Harden the OSS ecosystem.

RT @ha_joslyn: Ahead of #OSSummitEU, we explored the matter of how #opensource #maintainers can get paid. Thanks to @ljharb@TweetfromHilary….

RT @tidelift: Get the TL;DR from @tidelift CEO @dff in @securityblvd on the latest U.S. government cybersecurity requirements and what they….