The home of open source news, projects, & more | OpenSourcely

Securing CI/CD for an open source project: Controlling who runs what

Part oneThe last twelve months have been rough on the open source supply chain. Axios was compromised on npm and shipped a remote access trojan inside otherwise normal-looking releases. LiteLLM’s PyPI package was hijacked to exfiltrate environment variables. Typosquatted forks of Trivy were published to catch people who fat-finger go install. And the canonical example, the 2020 SolarWinds breach, is still the cautionary tale we keep coming back to: attackers got into the build system and p

Journey to JPEG XL: How open source experiments shaped the future of image coding

by Jyrki Alakuijala, Zoltán Szabadka & Luca Versari, Paradigms of Intelligence, Google Technology & SocietyBuilding the Next Generation Image StandardThe internet runs on images. Since the early days of the web, there has been a relentless tension between visual fidelity and bandwidth. For decades, the industry relied on the venerable JPEG standard for images loading fast. It served us remarkably well, but as displays moved to High Dynamic Range (HDR) and Wide Color Gamut (WCG), the form

Show HN: Open-Source AI Racing Harness

Hi I'm Dan from Elodin, making an open source real-time capable flight software simulation.For AI Grand Prix contestants, the wait for the Round 1 virtual qualifier simulation has been grueling.If you’re competing, check out our simulation harness to tide you over, built to match the published competition constraints and message format. It runs against real Betaflight, which we learned requires at least 1000 sensor samples per second to run real-time correctly.The competition warranted intr

Show HN: Open-source alternative to Duolingo for learning anything

I built an open-source tool for learning anything using AI:- Type what you want to learn - It creates a full interactive course for youMove from beginner to mastery of any subject, even complex things like Quantum PhysicsIt has three formats:- Explanation: bite-sized lessons that you swipe like TikTok/Instagram - Practice: solve problems in real-world situations - Quiz: test your knowledge in Duolingo-like lessons - Language courses have a different format covering vocabulary, reading, and

A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks that has impacted hundreds of organizations.

Google adds open source Agent Executor to support AI agents in production

The new runtime could help enterprises address operational challenges tied to scaling AI agents in production, although broader governance concerns persist, analysts say.

Anthropic’s Claude Mythos Flags 23K Potential Open-Source Security Flaws

Anthropic says Claude Mythos Preview flagged 23,019 potential open-source vulnerabilities as Project Glasswing exposes a ...

Source Code Is Not The Product: Why Commercial Open Source Works

Done right, openness creates a stronger business structure and a larger surface area for value creation than closed software.

9 Best Open-Source Apps from GitHub You Can Actually Use Every Day

GitHub hosts powerful open source apps you can use daily, from Immich for photo backups and Upscayl for image upscaling to VERT for file conversion, BC Uninstaller for cleanup, Mole for Mac storage, ...

Megalodon cyberattack infects 5,500 GitHub open-source repositories with malware, researchers say

The Megalodon cyberattack affected more than 5,500 GitHub open-source repositories, a type of attack GitHub warned against in April 2026.

Millions of AI agents imperiled by critical vulnerability in open source package

Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to breach the servers running them and make off with sensitive data and ...

An open-source AI model from China just matched OpenAI’s best at a third of the cost — forcing the world’s biggest labs to slash their prices

In January 2025, a Hangzhou-based AI lab called DeepSeek dropped a reasoning model that, by its own benchmarks, went ...

I replaced Claude Design with this open-source tool, and I'm not paying for design software again

Open Design is what everyone should be using.

Viable B2B SaaS business models?

Current dev tools make it possible to build open-source alternatives to established proprietary software incredibly fast. The ability to use Claude Cowork/Code as the frontend makes this even easier.In legal tech alone, Anthropic released a set of legal plugins (https://claude.com/lp/cowork-for-legal), a former law firm associate released MikeOSS (https://mikeoss.com/), and now there’s Retriever (https://retriever-plugin.com/, I’m the author

How Jaeger is evolving to trace AI agents with OpenTelemetry

As software architectures evolve, observability tools must adapt. When the industry moved to microservices, distributed tracing became a necessity. Jaeger emerged as a core tool for engineers to understand those fragmented systems. Now, as organizations integrate generative AI applications and autonomous agents into production, tracing requirements are shifting again. Mapping the execution path of an AI agent involves prompt assembly, vector database retrievals, and multiple external tool calls.

8 open-source apps that replaced my subscriptions

Some of you guys commented that I should make a video about my self hosting/homelab setup. If you're not familiar with it I also ...

Most Popular Linux Distros 2026: Market Share, User Base and Adoption Trends

Explore most popular Linux distros in 2026 with updated market share, developer adoption, gaming trends, server dominance, and usage statistics across Ubuntu, Debian, CachyOS, and other leading distributions in detailed overview

Advancing Open Source Patent Protection: Preservation of OIN 2.0 Source Code

DURHAM, N.C., May 18, 2026 (GLOBE NEWSWIRE) -- Open Invention Network (OIN), the only organization dedicated to mitigating patent risk in open source software (OSS), today announced the preservation of the source code that makes up OIN 2.0’s Linux System. The OIN 2.0 Linux System is the growing list of more than 5,100 open source software packages that defines the scope of the OIN 2.0 patent cross-license.

From open source to agentic systems: Microsoft at Open Source Summit North America 2026

Open source is the foundation for AI and, as AI workloads scale, developers need that foundation to be more secure, more predictable, and easier to build apps and agents.At Open Source Summit North America 2026, we’re announcing two updates that strengthen exactly that: the upcoming public preview of Azure Linux 4.0 on Azure Virtual Machines and the general availability of Azure Container Linux, our immutable container-optimized operating system (OS), with the broader rollout at Microsoft Build

Stera: Open-Source Infra That Turns iPhones into Spatial Data for World Models

We are releasing Project Stera - an open source, end-to-end pipeline that turns a commodity iPhone into a research-grade capture system for embodied AI training data.Today, we're open-sourcing the whole stack, along with Stera-10M, a 200+ hour dataset, and 10M+ frames captured entirely through it.FPV Labs began with one bet - the scaling law for embodied AI will need high-fidelity, multimodal real-world data, and the underlying infrastructure that produces this at scale without compromising