Post · bonfire.cafe

Post

The GitHub Secure Open Source Fund helped #curl and others to beef up security https://github.blog/open-source/maintainers/securing-the-ai-software-supply-chain-security-results-across-67-open-source-projects/

The GitHub Blog

Securing the AI software supply chain: Security results across 67 open source projects

The GitHub Secure Open Source Fund helped 67 critical AI‑stack projects accelerate fixes, strengthen ecosystems, and advance open source resilience.

Ben Faulhaber

@fromthesocks@linuxrocks.online · last week

@bagder considering that curl has been around longer than GitHub, I read this like: securing our (now) AI business.

Hope you stay on board for the next hype, too.

daniel:// stenberg://

@bagder@mastodon.social · last week

@fromthesocks their sponsorship of curl probably helps a large amount of users, but yes also those riding the latest hype. Not sure how that matters...

Ben Faulhaber

@fromthesocks@linuxrocks.online · 5 days ago

@bagder yep, I was only picking on the narrow justification 'AI supply chain'.

Ondřej Surý

@ondrej@mastodon.rfc1925.org · last week

@bagder > Modern software is built on open source projects. In fact, you can trace almost any production system today, including AI, mobile, cloud, and embedded workloads, back to open source components. These components are the invisible infrastructure of software: the download that always works, the library you never question, the build step you haven’t thought about in years, if ever.

And they all rely on DNS … and BGP. These are the invisible^2 infrastructure of the Internet.

Radio_Azureus

@Radio_Azureus@ioc.exchange · last week

I've read the article with keen interest. Keep up the great work on curl @bagder

🦋💙❤️💋 #Lobi 💙💕🌹💐💙🦋

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.2-alpha.34 no JS en

Automatic federation enabled