IBM and Red Hat have announced a $5 billion investment into 'Project Lightwell', an initiative aimed at securing open source software at enterprise scale. The project plans to establish a clearinghouse that uses AI to identify and fix vulnerabilities across large volumes of open source code. Security fixes will be offered via commercial subscriptions, enabling enterprises to integrate validated patches into their software supply chains. The announcement also mentions sharing vulnerability information with upstream open source projects.
Sort: