Homepage News Details
Red Hat and IBM Invest $5 Billion in Project Lightwell
2026-06-23 10:54
Favorite

en.Wedoany.com Reported - Red Hat has announced Project Lightwell, which combines AI and human expertise to accelerate the delivery of enterprise-grade open source software security patches, addressing increasingly severe supply chain security threats.

Chris Wright, Chief Technology Officer and Senior Vice President of Global Engineering, Red Hat.

Red Hat CTO Chris Wright noted that open source software forms the foundation of modern technology with no viable alternative. Since 2016, the number of published CVEs has grown by over 520%. AI-driven scanning tools can identify critical zero-day vulnerabilities within hours, yet less than 1% of these are patched. The core challenge for enterprises lies in whether their operational capabilities can rapidly consume and deploy fixes.

Currently, major organizations rely on the same core open source packages, such as Spring Framework, Jackson, Log4j, Pandas, and OpenSSL, but lack coordination. They independently discover vulnerabilities and develop patches in isolation, resulting in significant redundant effort and inconsistent quality, leaving the broader ecosystem continuously exposed to risk.

Project Lightwell extends Red Hat's two-decade-old enterprise-grade security patch backporting methodology, applying this engineering discipline to application frameworks and dependencies above the operating system layer. Starting with Maven/Java, it will later expand to PyPI, npm, and others. The project uses AI to handle high-volume threat intake, combined with human engineering, to deliver precise fixes for exact stable versions running in enterprises, adhering to the upstream-first principle by contributing fixes back to the original open source communities.

This project represents a joint $5 billion commitment from Red Hat and IBM, backed by over 20,000 engineers, aimed at building an information exchange hub for software supply chain security. The network enables members to share vulnerability discoveries early and receive coordinated patches, with each fix cryptographically signed and accompanied by machine-readable SBOMs and security advisories to meet compliance requirements. Through Project Lightwell, the defensive capabilities of individual enterprises and the overall security level of the open source community are simultaneously enhanced.

This article is compiled by Wedoany. All AI citations must indicate the source as "Wedoany". If there is any infringement or other issues, please notify us promptly, and we will modify or delete it accordingly. Email: news@wedoany.com

America
Information and CommunicationSoftware Engineering
Previous:Peruvian engineering firm Airmine wins ventilation study contract for Brazil's Urucum Norte project
Next:South African organizations build private networks to strengthen digital sovereignty
Related Products
Negotiable
TWP16 P-Band Tropospheric Wind Profile Radar
China Huayun Meteorological Technology Group Co., Ltd.
Negotiable
Single-mode Fiber G.652B
SHENZHEN SDG INFORMATION CO., LTD.
Negotiable
Mine Explosion-proof and Intrinsically Safe Industrial Ethernet Ring Network (10 Gigabit/Gigabit)
Chongqing Mas Sci&Tech Co., Ltd.
Negotiable
Office Data Leakage Prevention Solution
Sangfor Technologies Inc.
Negotiable
Mining Intelligent Rope-replacement Robot
Zhonggan Group
Negotiable
Intelligent Manufacturing
DONGFANG ELECTRIC CORPORATION
Negotiable
Automatic Aiming Laser Remote Obstacle Removal Robot
Pinggao Group Weihai High-Voltage Apparatus Co., Ltd.
Negotiable
Neolix X3 Autonomous Delivery Vehicle
Neolix Beijing Technology Co., Ltd.
Negotiable
QPS-20A Redundant Power Fast Switcher
CHN ENERGY ZHISHEN CONTROL TECHNOLOGY CO., LTD.
Negotiable /Set
GNSS
Kingmach Measurement & Monitoring Technology Co., Ltd.
Negotiable
Service Robot
Hangzhou GOLONG Technology Co., Ltd.
Negotiable
Wireless LAN | AirEngine 5776-56T Access Point
Huawei
Related Recommendations
Samsung Electronics Launches UFS 5.0 Mobile Storage Products
2026-06-23
Chinese Enterprise WeChat AI Agent "Dayuan" Enters Internal Testing Phase
2026-06-23
Jiangsu's First Unitree Embodied AI Industry College Inaugurated in Suzhou
2026-06-23
Dong Nai City Launches Digital Transformation Pilot Plan for Over 105,000 Individual Business Households
2026-06-23
Vietnam Promotes Digitalization of Hue Tourism, Expects Revenue of 10.3 Trillion VND in First Half of 2026
2026-06-23
Vietnam Approves 2026-2030 Plan to Drive Digital Transformation for at Least 500,000 Enterprises
2026-06-23
Japan's KDDI Partners with NVIDIA and Others to Build Digital Twin RAN
2026-06-23
Poland's KPO project has covered 314,816 residential units
2026-06-23
Poland's Nexera reports 2025 revenue of PLN 152 million, covering 9 provinces
2026-06-23
T-Mobile Poland Participates in PLN 12.8 Million NB-IoT Water Meter Project
2026-06-23
Lastest Bulletin
1
Predictive Maintenance and Cybersecurity Are Essential for Intelligent Hydropower Station Operation
2
How an Intelligent Hydropower Station Integrates Generation, Dispatching and Asset Management
3
Safe Operation of a Pumped Storage Power Station Depends on Reservoir, Unit and Digital Monitoring
4
How Reversible Units and Variable-Speed Technology Improve Pumped Storage Flexibility
5
Why Terrain and Geology Determine the Success of Pumped Storage Power Station Projects
6
How a Pumped Storage Power Station Works as a Large Water Battery for the Grid
7
U.S. Residential Building Technology Company NileBuilt Plans to Sell Gen-2 Composite Building Technology IP
8
Laison Showcases Smart Prepaid Water Meter Solutions at Zambia Water Expo
9
Gulf Coast Rebar Inc. Installs Nearly 10,000 Tons of Rebar, Wins SEAA 2026 Project of the Year Award
10
Carollo Engineers Secures $210 Million Water Plant Construction Management Contract in California