Tidelift
@tidelift
Making open source software work better—for everyone.
ID: 894719812366196736
http://tidelift.com 08-08-2017 00:40:01
1,1K Tweet
3,3K Followers
933 Following
We all know that the nature of vulnerability scanners + compliance requirements lead security teams to submit tons of unvalidated vulnerabilities upstream—this is NOT a good solution. James Berthoty says there’s a better way. Join us at #Upstream2024: bit.ly/457tbHA
Fun fact: this @finosfoundation panel live right now was the first panel we filmed for #Upstream2024 this year! And now is finally your chance to hear from #finserv experts like Gabriele Columbro, Tosha Ellison, and John Mark. Donald Fischer is your host. Join here: bit.ly/3RcoVB1
Want to learn how to make your open source project popular? Easy: Join #Upstream2024 now to hear @[email protected] share his findings from 15 years of making open source tools. bit.ly/3X8eDp2
We were so happy to have you speak at this year's Upstream, Vincent Danen ! 🥳 Vincent and Donald Fischer's talk is on-demand along with all of the other #Upstream2024 talks! Link below: explore.tidelift.com/upstream/upstr…
Our much anticipated #Upstream2024 maintainer state of the union is starting now! 📣 Hear about life as an open source maintainer in 2024 from: Dr. Jackson, Wesley Beary, Irina Nazarova, and Valeri Karpov. Join the conversation: bit.ly/3Kx04UJ
Aaaand that’s a wrap! 👏 #Upstream2024 has come to a close. We’re incredibly thankful for all those who attended and for those who gave their time to present on some amazing topics 🧡 Did you miss out on UpstreamOSS? No worries! All talks are on-demand: bit.ly/4bKOstc
What is a “bad” open source package? 😵 In Tidelift VP of Product lauren rae hanford’s latest blog post in ITPro Today, she answers this question and offers 4 ways to reduce reliance on said problematic packages. Read more at ITPro Today 👉 itprotoday.com/software-devel…
Say hello to mongoosejs 👋 a Node.js library in 4M+ GitHub repos & downloaded 2M times a week! 💥 With funding from @Tidelift & its customers, Val Karpov Valeri Karpov raised Mongoose’s #OpenSSF score from 7 to 8/10—far above the 3.3 avg. Read more 👉 explore.tidelift.com/mongoose-case-…
At #Upstream2024, James Berthoty dove into the #CVE chaos in GitHub Issues. Unvalidated vulnerabilities are overwhelming #oss maintainers, but clearer security policies and better compliance practices can pave the way forward. Revisit the full talk here: explore.tidelift.com/upstream/upstr…