GitHub says it is partnering with Anthropic, Amazon Web Services (AWS), Google, Microsoft and OpenAI to commit a combined $12.5 million to the Linux Foundation’s Alpha-Omega initiative, aimed at improving the security of critical open source software projects.
According to the company, the funding is intended to support work with open source maintainers, including efforts to make AI-based security capabilities more accessible and integrated into existing project workflows. GitHub said the broader goal is to advance open source software (OSS) security programmes.
Separately, GitHub outlined additional investments it says are focused on open source maintainers.
The GitHub Secure Open Source Fund is set to add $5.5 million in Azure credits and funding. GitHub said the funding will be used to provide training and expertise, support community efforts to improve outcomes, and add new partners including Datadog, Open WebUI, the Atlantic Council and OWASP.
GitHub also said its GitHub Security Lab will invest in the security advisory experience on GitHub and in its Private Vulnerability Reporting (PVR) features. The company said the work is aimed at reducing the burden on maintainers from low-quality reports and helping them manage a rising volume of security submissions.
The announcements come amid ongoing concerns about software supply-chain risk, with many widely used open source components maintained by small teams or volunteers. Industry efforts such as Alpha-Omega have increasingly focused on funding and operational support as a way to reduce systemic risk across the software ecosystem.
