Hacker hijacks Axios open-source project, used by millions, to push malware

A hacker inserted malware in Axios, an open-source web tool downloaded tens of millions of times weekly, in a widespread hack ...

Open source isn't a tip jar – it's time to charge for access

Opinion Time and again, I see people begging for companies with deep pockets to fund open source projects. I mean, after all, ...
Bleeping Computer

Open VSX rotates access tokens used in supply-chain malware attack

The Open VSX registry rotated access tokens after they were accidentally leaked by developers in public repositories and allowed threat actors to publish malicious extensions in a supply chain attack.
Ars Technica

Supply-chain attacks on open source software are getting out of hand

It has been a busy week for supply-chain attacks targeting open source software available in public repositories, with successful breaches of multiple developer accounts that resulted in malicious ...
ZDNet

How AI coding agents could destroy open source software

A couple of weeks ago, I had the opportunity to use Google's Jules AI Agent to scan through the entire code repository of one of my projects and add a new feature. The AI took about 10 minutes. All ...
Forbes

What Leaders Need To Know About Open-Source Vs. Proprietary Models

HONG KONG, CHINA - JANUARY 28: In this photo illustration, the DeepSeek logo is seen next to the Chat GPT logo on a phone on January 28, 2025 in Hong Kong, China. (Photo illustration by Anthony ...
ZDNet

Trump's AI plan says a lot about open source - but here's what it leaves out

As expected, President Donald Trump's administration recently unveiled Winning the Race: AI Action Plan went all in on liberating AI companies to do what they want to make sure "that the United States ...