In a nutshell: A large-scale alliance of established technology companies and financial institutions pools resources to coordinate remediation of open-source security gaps in response to AI-powered vulnerability discovery.
The Linux Foundation has established the Akrites initiative to centrally coordinate the reporting and remediation of vulnerabilities in critical open-source software. The move responds to artificial intelligence significantly accelerating vulnerability discovery.
Founding members of Akrites include AWS, Google, Microsoft, OpenAI, Red Hat, Nvidia, IBM, Cisco, and JPMorgan Chase. The initiative establishes a shared security incident response team and creates a standardized, coordinated disclosure process for vulnerabilities. Additionally, Akrites assumes management of widely-used but abandoned software packages.
For a CISO, this coordination means structured reduction of remediation time for critical vulnerabilities in the open-source dependency chain of their systems. Previously, fragmented reporting processes led to duplicate reports, delayed patches, and inconsistent fixes—risks that, especially in widely-used software such as orphaned packages, resulted in vulnerabilities with critical exploitation potential.
Through the alliance’s participation, developers are supported in fixing flaws before active exploitation by attackers. The corporations contribute their own engineers or finance external developers. In doing so, Akrites directly addresses the core problem: that AI-powered fuzzing and scanning technologies find vulnerabilities faster than traditional open-source maintainers can patch them—a race that individual organizations cannot win alone.
Source: www.it-daily.net · Published 26 June 2026
Lumi AI News — AI-assisted curation pursuant to Article 50 EU AI Act. Paraphrase and classification through Lumi News Pipeline v1.7.1.