<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">

Managed open source. Backed by maintainers.

Customizable catalogs of known-good, proactively maintained JavaScript, Python, Java, PHP, Ruby, and .NET components

Free Demo



The Tidelift Subscription



Stop parsing painful scanner reports

full of false positives and open source trivia
Create-catalog (1)

Start using our catalogs of known-good open source components

that are proactively managed for you

Create your own catalogs of approved components

and customize specifically for your organization

Tidelift named IDC Innovator


"Tidelift is positioned as the single source of content for supported technologies so enterprises can build and manage their software using known-good OSS components."

- Al Gillen and Elaina Stergiades, IDC


Speed up application development, save money, and reduce risk when building apps with open source.




Verified updates for zero-day vulnerabilities, coordinated security responses, and immediate notifications of which of your applications are impacted, with the fix prepared for you. Like your phone, just "apply updates" to stay secure.


Verified-accurate open source licenses (including IP indemnification) and customizable policy enforcement. Your up-to-date software “bill of materials” is always one click away.


Tidelift continuously guides you on your upgrade path, steering you towards the best packages and versions for your particular application. It’s like a GPS for open source software.

Free Demo

Meet the maintainers

Tidelift partners directly with the independent maintainers behind a broad range of community-led open source projects, paying them to ensure their packages meet clearly defined security, licensing, and maintenance standards today and in the future.

Because maintainers are paid a reliable income for their ongoing work, they can dedicate their efforts towards keeping their software enterprise ready.

And maintainer income scales as more subscribers use their packages. More income means more investment making their software even better, faster.

That alignment of interests between users and creators just makes sense. It's a win-win.

Are you an open source maintainer? Learn more and see if your package is eligible for income.


"Tidelift has a really interesting approach to funding open source work. It's a pretty simple concept: maintainers get paid and the organizations who use their projects get the support and dependability they need in return."

- Evan You, Vue.js (Javascript)


"Tidelift has a solution for those companies that would otherwise have to pay many open source projects small amounts each year."

- Roel Spilker, Project Lombok (Java)


"Tidelift formalizing a lot of the project minutiae is incredibly helpful—things we should do but often don't, because there are other things to be done."

- Alex Clark, Pillow (Python)


Resources to get you started

The 2020 Tidelift managed open source survey

The 2020 Tidelift managed open source survey

We highlight nine of the most interesting revelations that help us understand how to make open source work even better for development teams and the organizations they work within.
Download Now
Cooking with Tidelift and JFrog: How to bake known good open source into your app development

Cooking with Tidelift and JFrog: How to bake known good open source into your app development

Join us for a brief reading of the Cooking with Tidelift and JFrog story, followed by a technical learning session, on Wednesday, February 10 at 11 a.m. PT / 2 p.m. ET.
Register Now
Accelerate app development by optimizing your organization’s open source strategy

Accelerate app development by optimizing your organization’s open source strategy

In this webinar, Tidelift CEO and co-founder Donald Fischer is joined by guest speaker Chris Condo, Forrester’s Principal Analyst.
Register Now
See More Resources