<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=705633339897683&amp;ev=PageView&amp;noscript=1">


Fireside chat: Why this CISO thinks SBOMs aren't the silver bullet

Tidelift CEO and co-founder Donald Fischer sits down with Andy Ellis, former Chief Security Officer at Akamai turned startup advisor and investor and talk about the true consequences of SBOMs.

The importance of a sound open source software supply chain management strategy

Tidelift host Kanish Sharma and guest speaker Jim Mercer, IDC research vice president, dived into these challenges and discussed the best approach to addressing them.

AWS + Tidelift panel: Best practices for inclusive development

Inclusive is one of our core values at Tidelift. So we were delighted and inspired when our friends at AWS were interested in collaborating with us on a panel discussion about inclusive practices in open source software development.

Why software composition analysis tools aren't enough

Historically, software composition analysis (SCA) tools were one primary way to get better visibility into open source security, maintenance, and licensing risk. But, by themselves, they are not enough.

Log4Shell, open source maintenance, and why SBOMs are critical now

Join Tidelift CEO and co-founder Donald Fisher and guest speaker Forrester Principal Analyst Sandy Carielli as they discuss some of the key lessons organizations can learn from Log4Shell along with some critical recommendations organizations can use to prepare for handling similar issues down the road.

From Heartbleed to Log4Shell: How are things better? How are they the same?

Tidelift solutions architect lead Mark Galpin shares insights into theLog4Shell vulnerability and discusses how things have changed since Heartbleed.

Tidelift briefing: What you need to know about the Log4Shell vulnerability

Mark Galpin breaks down the current Log4Shell situation and shares tips for remediating the issue. You won't want to miss this.

Tracy Bannon from MITRE talks OSS supply chain security and how to help your overburdened dev team

For years, experts have been telling the government to take stock of the software supply chain by generating software bills of materials and defining standards and policies for use.

Tidelift December product update and live demo

Tidelift product marketing lead Kanish Sharma and solutions architect Jimmy Caldwell demo the latest updates to the Tidelift Subscription.

Briefing: Thinking upstream about White House cybersecurity executive order 14028

Tidelift CEO and co-founder Donald Fischer shares his perspective on how the cybersecurity executive order impacts software supply chain security.

Supporting the Python community by “shifting left”

What are some ways corporate users of open source software can contribute upstream and partner with ecosystems who provide the software?

Open source software supply chain management and security in the wake of SolarWinds

Tidelift CEO Donald Fischer will brief application development teams on the state of software supply chain security.

Keep OSS supply chain attacks off the menu: Tidelift catalogs + JFrog serve known-good components

Tidelift senior product manager Jeff Stern will share how Tidelift catalogs provide organizations with known-good open source components.

Open source licenses AMA part 2

Tidelift's resident open source license guru Luis Villa answers some pressing questions

Take control of your open source software supply chain with Tidelift catalogs

Watch on-demand as we demonstrate how you can use the Tidelift Subscription as the heart of an effective open source supply chain management strategy.

Cooking with Tidelift and JFrog: How to bake known good open source into your app development

Watch a brief reading of the Cooking with Tidelift and JFrog story, followed by a technical learning session.

Accelerate app development by optimizing your organization’s open source strategy

In this webinar, Tidelift CEO and co-founder Donald Fischer is joined by guest speaker Chris Condo, Forrester’s Principal Analyst.

Open source licenses AMA

Tidelift's resident open source license guru Luis Villa is joined by guest speaker Kate Downing to answer some pressing questions.

Best practices for managing your open source artifacts

We share the latest best practices orgs can use to manage their open source dependencies.

The future of open source software support

IDC analyst Al Gillen explains the history of open source support models and his thoughts about the future of open source support.

Everything you never wanted to know about open source licenses and were too bored to ask

Tidelift's resident open source license guru Luis Villa shares the basics of how open source licenses work.

Choosing open source packages well

Tidelift co-founder Jeremy Katz deep dives into the steps you can take to choose the right open source packages for your organization.

How to level up your open source project with Tidelift

Are you an open source maintainer interested in leveling up your open source project through Tidelift?

How the maintainers of urllib3 keep the project secure and healthy (and why you should care)

Tidelift VP of Product Lauren Hanford sits down to chat with Seth Larson about all the systems and processes Seth and the team has put into place to keep urllib3 happy and healthy for all those millions of Python dependencies.