The Open Source Security Foundation today launched its Malicious Packages Repository, an open-source system for collecting and publishing cross-ecosystem reports of malicious packages. Claimed to be ...

An EU platform for exchanging free and open-source code now offers more than 2,000 applications for use by public bodies in the region. The EU Open Source Observatory and Repository (Osor.eu) ...

According to a representative of the project that oversees the program, known as the Concurrent Versions System, the vulnerabilities include a flaw that could let an attacker take control of a CVS ...

Researchers have uncovered yet another supply chain attack targeting an open source code repository, showing that the technique, which has gained wide use in the past few years, isn’t going away any ...

As a Google Pixel user, I’m admittedly pretty far from the open source ideal of Android, but that doesn’t mean I can’t still enjoy open source apps. While I don’t use a ton of them, I surprised myself ...

The Pidgin messaging app removed the ScreenShareOTR plugin from its official third-party plugin list after it was discovered that it was used to install keyloggers, information stealers, and malware ...

Is there a reasonably easy, open source metadata repository software we could try? Try Repository in a Box, which runs under Linux and Windows versions of Apache Tomcat using MySQL for data storage.