Skip Navigation

The shifting landscape of open source supply chain attacks - Part 2

By Brian Fox on January 25, 2023 thought leaders

11 minute read time

Sonatype's Brian Fox delves into how bad actors and cybercriminals are attacking the software supply chain, and how cyberattacks continue to evolve.

Heartbleed: The Open Source Vulnerability that Keeps on Giving (and Taking)

By Matt Howard on June 12, 2017 Everything Open Source

2 minute read time

Heartbleed is taking £100,000 from the council more than three years after the fact.

The 2014 Survey: Marked by an Industry Shock Wave

2 minute read time

Wow! What an amazing turnout we had for our 4th annual survey: 3,353 participants this year brings us to over 11,000 participants in the four years we’ve.

Are OpenId and OAuth ‘Bleeding’?

By Ryan Berg on May 07, 2014 openid

4 minute read time

Now that Heartbleed has become the new measuring stick for vulnerability disclosures, I have had several people ask me, “Is this OpenId/Oauth thing the next.