{"id":283159,"date":"2026-06-28T04:21:00","date_gmt":"2026-06-28T08:21:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/06\/28\/linux-foundation-launches-akrites-to-improve-open-source-vulnerability-response\/"},"modified":"2026-06-28T05:25:12","modified_gmt":"2026-06-28T09:25:12","slug":"linux-foundation-launches-akrites-to-improve-open-source-vulnerability-response","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/06\/28\/linux-foundation-launches-akrites-to-improve-open-source-vulnerability-response\/","title":{"rendered":"Linux Foundation Launches Akrites to Improve Open Source Vulnerability Response"},"content":{"rendered":"<p><a href=\"https:\/\/linuxiac.com\/linux-foundation-launches-akrites-to-improve-open-source-vulnerability-response\/\">Linux Foundation Launches Akrites to Improve Open Source Vulnerability Response<\/a><\/p>\n<p><a href=\"https:\/\/linuxiac.com\/linux-foundation-launches-akrites-to-improve-open-source-vulnerability-response\/\">https:\/\/linuxiac.com\/linux-foundation-launches-akrites-to-improve-open-source-vulnerability-response\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-28 04:21:00<\/a><\/p>\n<p>Source Domain: <a href=\"linuxiac.com\">linuxiac.com<\/a><\/p>\n<p class=\"wp-block-paragraph\">Following the flood of vulnerabilities discovered in open-source projects in recent months, the Linux Foundation, in collaboration with leading technology, AI, financial, and cybersecurity companies, has announced\u00a0Akrites, a new program to improve the reporting, remediation, and disclosure of critical vulnerabilities in open-source software.<\/p>\n<p class=\"wp-block-paragraph\">The project launches as AI-assisted tools accelerate vulnerability discovery. And while this helps defenders identify issues earlier, it also leads to an influx of reports, many of which are duplicated, incomplete, uncoordinated, or difficult to verify promptly.<\/p>\n<p class=\"wp-block-paragraph\">In response to all of this, Akrites is establishing a shared Security Incident Response Team and a standardized Coordinated Vulnerability Disclosure process for key open-source projects. The purpose is to ensure serious issues are dealt with responsibly, resolved upstream, and disclosed in a coordinated manner.<\/p>\n<p class=\"wp-block-paragraph\">According to the Linux Foundation, the initiative is backed by a long list of founding members, including Amazon Web Services, Anthropic, Chainguard, Cisco, Citi, Endor Labs, Ericsson, Google, IBM, JPMorganChase, Microsoft, GitHub, NVIDIA, OpenAI, RapidFort, Red Hat, the Rust Foundation, Sonatype, Vodafone, and Zscaler.<\/p>\n<p class=\"wp-block-paragraph\">The project addresses the concern that discovery is outpacing traditional open-source response workflows. LLMs and other AI tools enable researchers to scan code and generate reports at scale. However, many FOSS projects are maintained by small teams or individual volunteers who might lack the resources to manage a spike in security reports.<\/p>\n<p class=\"wp-block-paragraph\">This creates a common bottleneck in open-source security, because discovery is only the first step. Next, issues must be validated, assessed for severity, fixed, coordinated with vendors, assigned CVEs as needed, and disclosed without giving attackers an advantage.<\/p>\n<p class=\"wp-block-paragraph\">And this is where Akrites steps in, intended to serve as a trusted coordination layer. It will apply&#8230;<\/p>\n<p><a href=\"https:\/\/linuxiac.com\/linux-foundation-launches-akrites-to-improve-open-source-vulnerability-response\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Linux Foundation Launches Akrites to Improve Open Source Vulnerability Response https:\/\/linuxiac.com\/linux-foundation-launches-akrites-to-improve-open-source-vulnerability-response\/ Publish Date: 2026-06-28 04:21:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":283160,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/linuxiac.com\/wp-content\/uploads\/2026\/06\/akrites.jpg","fifu_image_alt":"","footnotes":""},"categories":[48],"tags":[71,94,57,27],"class_list":["post-283159","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","tag-linux","tag-red-hat-enterprise-linux","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/283159"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=283159"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/283159\/revisions"}],"predecessor-version":[{"id":283161,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/283159\/revisions\/283161"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/283160"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=283159"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=283159"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=283159"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}