For software development teams, ensuring they have the best available information about the open source they are using to improve security and reduce risk can be challenging and time-consuming. Organizations often have to make tough tradeoffs between moving fast (and risking bringing in components that have not been fully vetted) and staying safe (potentially adding bureaucracy that slows down development).
For open source maintainers, keeping their projects well maintained and secure isn’t free—far from it. These creators often don’t have the time or incentive to ensure their projects follow secure software development practices, which puts all of us at risk.
First, software development teams should have access to the best possible information about the open source software they incorporate into their projects. They should be confident that components are secure, well integrated, and properly maintained.
Meanwhile, open source maintainers should be compensated for ensuring they develop using the standardized secure software development practices enterprises expect so they and their projects can thrive.
We have a genuinely positive outlook on the world, focusing on boundless possibilities. We see an amazing future ahead, and want to inspire others to share in it.
We know words and ideas alone won’t change lives. We help people most by creating a pragmatic, viable, and sustainable business that works for everyone.
A rising tide lifts all boats. We create an environment that encourages and inspires growth, both for individuals and for the community as a whole.
We believe technology will be stronger when it better reflects the voices and ideas of society as a whole. So we create opportunities for people from different backgrounds and experiences to flourish.
.jpeg?width=801&height=564&name=caitlinalex%20(1).jpeg)
.jpg?width=423&height=564&name=IMG_8013%20(2).jpg)
50 Milk St, 16th Floor, Boston, MA 02109
.svg){kind=icon}