Malware in an Open-Source Project Could Have Infected Thousands. The Twist? It Was Certified by Delve

For a short window on Tuesday, two versions of a popular open-source project from LiteLLM contained malware, designed to steal all sorts of login credentials. A researcher discovered it after it ...

Open source isn't a tip jar – it's time to charge for access

Opinion Time and again, I see people begging for companies with deep pockets to fund open source projects. I mean, after all, ...
TMCnet

Embrace Contributes Its Kotlin Implementation and SDK to OpenTelemetry

Contribution continues Embrace's investment in vendor-agnostic, open-source instrumentation in frontend and mobile by extending support to Kotlin and Kotlin Multiplatform. LOS ANG ...

CISA orders feds to patch max-severity Cisco flaw by Sunday

The Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to patch a maximum-severity vulnerability, CVE-2026-20131, in Cisco Secure Firewall Management Center (FMC) by ...

Chainguard is racing to fix trust in AI-built software - here's how

Chainguard is expanding beyond open-source security to protect open-core software, AI agent skills, and GitHub Actions.