InfoQ

OpenSSF Publishes Security Baseline for Open-Source Projects

Waiting for them to become available in the future, project maintainers are suggested to use a self-attestation such as "As of April 31, 2025, this project complies with OSPS Baseline version ...
InfoQ

Vercel Releases React Best Practices Skill with 40+ Performance Rules for AI Agents

Vercel has launched "react-best-practices," an open-source repository featuring 40+ performance optimization rules for React and Next.js apps. Tailored for AI coding agents yet valuable for developers ...
Dark Reading

OpenSSF Sets Minimum Security Baselines for Open Source Projects

The Open Source Security Foundation (OpenSSF), a Linux Foundation entity, has announced a new initiative to establish minimum security requirements for open source software. The Open Source Project ...

For open-source programs, AI coding tools are a mixed blessing

AI coding tools have enabled a flood of bad code that threatens to overwhelm many projects. Building new features is easier ...

Why Open Source Projects Are Run By Benevolent Dictators For Life

It might come as a shock to some that many open source projects have a "benevolent dictator for life" governance model.