Sonatype and Package Registry Leaders Unite to Address Open Source Sustainability Crisis

Sonatype ®, the leader in AI-driven DevSecOps and steward of Maven Central, today announced its participation as a founding member of the newly-formed Sustaining Package Registries Working Group.
Forbes

The True Value Of Open-Source Software Isn’t Cost Savings

Open-source software powers the majority of today’s businesses. An estimated 70% to 90% of modern software solutions use a code base made up of open-source components, according to 2022 data from the ...
Ars Technica

Supply-chain attacks on open source software are getting out of hand

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with successful breaches of multiple developer accounts that resulted in malicious ...