We all know that the nature of vulnerability scanners + compliance requirements lead security teams to submit tons of unvalidated vulnerabilities upstream—this is NOT a good solution. James Berthoty says there’s a better way. Join us at #Upstream2024: bit.ly/457tbHA

Fun fact: this @finosfoundation panel live right now was the first panel we filmed for #Upstream2024 this year! And now is finally your chance to hear from #finserv experts like Gabriele Columbro, Tosha Ellison, and John Mark. Donald Fischer is your host. Join here: bit.ly/3RcoVB1

Want to learn how to make your open source project popular? Easy: Join #Upstream2024 now to hear @[email protected] share his findings from 15 years of making open source tools. bit.ly/3X8eDp2

We were so happy to have you speak at this year's Upstream, Vincent Danen ! 🥳 Vincent and Donald Fischer's talk is on-demand along with all of the other #Upstream2024 talks! Link below: explore.tidelift.com/upstream/upstr…

Our much anticipated #Upstream2024 maintainer state of the union is starting now! 📣 Hear about life as an open source maintainer in 2024 from: Dr. Jackson, Wesley Beary, Irina Nazarova, and Valeri Karpov. Join the conversation: bit.ly/3Kx04UJ

Aaaand that’s a wrap! 👏 #Upstream2024 has come to a close. We’re incredibly thankful for all those who attended and for those who gave their time to present on some amazing topics 🧡 Did you miss out on UpstreamOSS? No worries! All talks are on-demand: bit.ly/4bKOstc

Product update! ✅ We’re extending our end-of-life data capabilities with #opensource package version-level end-of-life data and enhanced reporting capabilities. Tidelift vp of product lauren rae hanford details the latest update: bit.ly/3xCH58s

What’s the state of life as an #opensource maintainer today? If you actively maintain one or more #OSS projects, we’d love to learn from you. Share your voice and get a free 2024 edition pay the maintainers t-shirt! 📣 bit.ly/3XQdvqD

Do you actively maintain one or more #opensource projects? If so, take a few minutes to complete the 2024 @Tidelift maintainer survey! hubs.la/Q02Fn_Lf0

Are you an #opensource #maintainer who maintains one or more projects? We’d love to hear from you! Complete our survey and we’ll send you one or more ✨snazzy✨ gifts: bit.ly/4c1CpXX

The last day to take the 2024 Tidelift state of the #opensource maintainer survey is Monday, July 29th! 📅 We’ve received a ton of responses so far, but the one voice we’re missing is yours! 🫵 If you’re a maintainer, take the survey today: tidelift.az1.qualtrics.com/jfe/form/SV_8c…

We’re extending the survey to Mon, Aug 5th! 👏 Let your voice be heard! Fill out the #opensourcemaintainer survey today and receive the 2024 edition of our newest Pay the Maintainers t-shirt: tidelift.az1.qualtrics.com/jfe/form/SV_8c…

The data from our previous #opensource maintainer surveys have been cited in countless academic research papers and in the media. If you’re a maintainer, we need your insights. Share your voice! The survey closes Mon, Aug 5: tidelift.az1.qualtrics.com/jfe/form/SV_8c…

The survey is now closed! Thank you to everyone who submitted responses! ✅ Look forward to seeing the results in the upcoming weeks! 👀 More information on the survey: blog.tidelift.com/take-the-2024-…

25 years ago yesterday, Red Hat rolled out an IPO experiment to pay #opensource maintainers. Today, Chris Grams, CMO at @Tidelift, hits rewind ⏪ and revisits the day: what went down, why it matters, and its impact. Read his post on the Tidelift blog: blog.tidelift.com/the-red-hat-ip…

What is a “bad” open source package? 😵 In Tidelift VP of Product lauren rae hanford’s latest blog post in ITPro Today, she answers this question and offers 4 ways to reduce reliance on said problematic packages. Read more at ITPro Today 👉 itprotoday.com/software-devel…

Say hello to mongoosejs 👋 a Node.js library in 4M+ GitHub repos & downloaded 2M times a week! 💥 With funding from @Tidelift & its customers, Val Karpov Valeri Karpov raised Mongoose’s #OpenSSF score from 7 to 8/10—far above the 3.3 avg. Read more 👉 explore.tidelift.com/mongoose-case-…

🚀 NEW on We ❤️ Open Source 🚀 Discover how @Tidelift has successfully paid open source maintainers at scale. Learn key lessons from years of experience in this comprehensive guide by Luis Villa. #WeLoveOpenSource #OSS buff.ly/3AD2KOR

At #Upstream2024, James Berthoty dove into the #CVE chaos in GitHub Issues. Unvalidated vulnerabilities are overwhelming #oss maintainers, but clearer security policies and better compliance practices can pave the way forward. Revisit the full talk here: explore.tidelift.com/upstream/upstr…