Rust
Google punts $1 million towards work on Rust and C++ interoperability
The Carbon project also lives on...
open source
New Harvard study finds Open Source is worth up to $8.8 trillion
"Any time you spend on building that software to operate is time taken away from building the services that customers really want and will pay for. Open source software helps companies get to their goals faster..."
european union
Europe's controversial cyber resilience law gets a rewrite -- now not as terrible as it was
A rewritten EU cyber resiliency act removes the biggest threats to open source but much standards work still to be done, says Linux Foundation Europe
AI
Microsoft open-sources “TaskWeaver” AI framework
Stateful. A Web UI. Customisable plugins. Six LLMs supported. Nice work, Microsoft.
open source
As Cisco swoops on Cilium, community efforts look critical
CNCF governance should avoid a "Hashicorp" situation, but increasingly broad community contributions to the important open source project would be welcome.
open source
The Big Interview: Thomas Graf, CTO, Isovalent, on eBPF, cloud-native networking and why Cilium is so hot right now
"We're taking on one piece of the network step-by-step. eBPF is making a lot of things possible and with cloud native, all aspects of the network and of connectivity have an opportunity to be redone better."
CEO
HashiCorp CEO predicts OSS-free Silicon Valley unless the open source model evolves
Says Linux Foundation's OpenTofu adoption "tragic"
open source
A free new repository offers intel on malicious open source
OpenSSF's new Malicious Packages Repository is free to use in and available in OSV format.
News
A local, free, open source, generative AI stack for developers? Docker and friends aim to cover all the bases
Package includes Ollama, which lets you download a range of open source LLM model packages, bundling weights, configuration and data into a single portable file
CISO
JPMorgan’s Global CISO urges use of Sigstore, Alpha-Omega in open source security drive
Multinational's Global CISO touts critical work being done by the OpenSSF and tools like its Security Scorecard...
open source
Bad Behaviour and Dirty Downloads: 2.1 billion OSS packages with known vulns downloaded this year.
Strikingly, only 11% of open source projects are ‘actively maintained'. Should you be worried? Well, probably, yes.
open source
Buffer overflow bug gives root on potentially millions of Linux boxes
Do you, or do you not, need to get your knickers in a twist? Well, that depends on your risk tolerance..