Major technology leaders including AWS, Google, Microsoft, and OpenAI have joined forces with the Linux Foundation to launch Akrites, a centralized initiative designed to secure the global software supply chain. This coalition aims to solve the fragmented nature of vulnerability management by coordinating the identification, disclosure, and patching of security flaws in critical open-source projects. By aligning resources from giants like NVIDIA, IBM, Cisco, and Red Hat, the program seeks to prevent conflicting fixes and eliminate the noise of duplicate vulnerability reports.
The project addresses several long-standing risks in the open-source ecosystem, particularly for abandoned or under-maintained projects that remain infrastructure staples. Through Akrites, these vulnerable projects will receive direct support and expert intervention before security gaps can be exploited by malicious actors. This systematic approach provides a much-needed safety net for project maintainers who are often overwhelmed by the responsibility of securing code used by millions of enterprise users.

