Wix.com announced the launch of the Wix Model Context Protocol (MCP) Server.
Sonar to Acquire Tidelift
December 17, 2024
Sonar signed a definitive agreement to acquire Tidelift, a provider of software supply chain security solutions that help organizations manage the risk of open source software.
The acquisition will extend Sonar’s scope of coverage to include open source libraries, in addition to code written by developers and AI – improving the state of open source software and raising the bar for code quality and security everywhere.
Tidelift helps improve the health and security of open source by paying the maintainers behind thousands of the world’s most-relied-upon open source projects to follow secure software development practices. Paid open source maintainers are 55% more likely to implement critical security and maintenance practices than unpaid maintainers.
“Tidelift and Sonar are naturally aligned through a common vision – improve code everywhere and supercharge the developer experience. We have been impressed with Tidelift’s approach to improving open source software and look forward to welcoming the team to Sonar,” said Tariq Shaukat, CEO of Sonar. “Tidelift provides insight into many factors that could adversely impact applications relying on open source, so that developers can remediate issues proactively at the point they are introduced.”
For organizations that write code and build software, Sonar improves developer productivity and accelerates software development by improving the developer experience with actionable insights, high-fidelity issue alerts, and assistance with remediation along the development workflow. By orchestrating the coding lifecycle from code to commit to refactor, with the developer experience at the center, Sonar maximizes developers' potential to deliver excellent, secure code fast.
“Against a backdrop of high-profile security issues impacting open source, like the Log4Shell and XZ Utils vulnerabilities, technology leaders have a strategic imperative to ensure that the open source code they incorporate into their applications meets enterprise-grade quality and security standards,” said Donald Fischer, CEO and co-founder of Tidelift. “By combining Tidelift and Sonar’s unique capabilities, organizations will have a complete solution for managing code quality and security across internally developed, AI-generated, and now open source code.”
The Tidelift offering will continue to be available – there are no immediate planned changes to the current Tidelift product. Tidelift customers and maintainer partners will not experience any disruption to their current experiences.
Additional details will be provided in Q1 2025.
Industry News
May 07, 2025
Pulumi announced Pulumi IDP, a new internal developer platform that accelerates cloud infrastructure delivery for organizations at any scale.
May 07, 2025
Qt Group announced plans for significant expansion of the Qt platform and ecosystem.
May 07, 2025
Testsigma introduced autonomous testing capabilities to its automation suite — powered by AI coworkers that collaborate with QA teams to simplify testing, speed up releases, and elevate software quality.
May 06, 2025
Google is rolling out an updated Gemini 2.5 Pro model with significantly enhanced coding capabilities.
May 06, 2025
BrowserStack announced the acquisition of Requestly, the open-source HTTP interception and API mocking tool that eliminates critical bottlenecks in modern web development.
May 06, 2025
Jitterbit announced the evolution of its unified AI-infused low-code Harmony platform to deliver accountable, layered AI technology — including enterprise-ready AI agents — across its entire product portfolio.
May 05, 2025
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, and Synadia announced that the NATS project will continue to thrive in the cloud native open source ecosystem of the CNCF with Synadia’s continued support and involvement.
May 05, 2025
RapDev announced the launch of Arlo, an AI Agent for ServiceNow designed to transform how enterprises manage operational workflows, risk, and service delivery.
May 01, 2025
Check Point® Software Technologies Ltd.(link is external) announced that its Quantum Firewall Software R82 — the latest version of Check Point’s core network security software delivering advanced threat prevention and scalable policy management — has received Common Criteria EAL4+ certification, further reinforcing its position as a trusted security foundation for critical infrastructure, government, and defense organizations worldwide.
May 01, 2025
Postman announced full support for the Model Context Protocol (MCP), helping users build better AI Agents, faster.
May 01, 2025
Opsera announced new Advanced Security Dashboard capabilities available as an extension of Opsera's Unified Insights for GitHub Copilot.
May 01, 2025
Lineaje launched new capabilities including Lineaje agentic AI-powered self-healing agents that autonomously secure open-source software, source code and containers, Gold Open Source Packages and Gold Open Source Images that enable organizations to source trusted, pre-fixed open-source software, and a software crawling and analysis engine, SCA360, that discovers and contextualizes risks at all software development stages.
April 30, 2025
Check Point® Software Technologies Ltd.(link is external) launched its inaugural AI Security Report(link is external) at RSA Conference 2025.
April 30, 2025
Lenses.io announced the release of Lenses 6.0, enabling organizations to modernize applications and systems with real-time data as AI adoption accelerates.
