Kusari Inspector is now free to CNCF and OpenSSF initiatives, delivering AI-powered dependency, license and safety intelligence proper in developer pull requests
Kusari, a number one innovator in software program provide chain safety, right now introduced partnerships with the Cloud Native Computing Basis (CNCF) and the Open Supply Safety Basis (OpenSSF) to make Kusari Inspector out there freed from cost to CNCF and OpenSSF open supply initiatives.
We constructed Kusari Inspector to ship superior safety inside developer workflows. Now maintainers could make assured, knowledgeable selections about contributions with out changing into safety specialists.”
— Michael Lieberman, Kusari Co-Founder and CTO
Open supply software program underpins greater than 90% of recent purposes, and venture maintainers are stretched skinny by the deluge of AI-generated contributions. Plus, most maintainers aren’t safety consultants, nor ought to they must be, to know what’s dangerous.
Kusari Inspector is an AI-powered code evaluation and dependency evaluation instrument that delivers clear go/no-go suggestions through CLI or immediately in GitHub pull requests. By surfacing context-aware steerage earlier than modifications are merged, Kusari Inspector permits maintainers and contributors to catch and remediate code, dependency, and license compliance dangers with out slowing improvement. Open supply initiatives already adopting Kusari Inspector embody Gemara, GitTUF, GUAC, in-toto/Witness, OpenVEX, Protobom and Provide-chain Ranges for Software program Artifacts (SLSA).
Additionally Learn: AiThority Interview with Glenn Jocher, Founder & CEO, Ultralytics
“Open supply maintainers are balancing an ever-expanding set of duties, and most of them didn’t signal as much as be safety consultants,” stated Michael Lieberman, Kusari Co-Founder and CTO. “We constructed Kusari Inspector to shut the hole; delivering superior safety immediately inside developer workflows and automating guide threat mitigation duties. Now maintainers could make assured, knowledgeable selections about contributions with out changing into safety specialists. Making it out there to CNCF and OpenSSF initiatives is a pure extension of our dedication to the open supply ecosystem.”
“The true breakthrough in securing the software program provide chain is recognizing that dependency administration—particularly with the rise of AI-driven contributions—is a essentially cloud native problem,” stated Jonathan Bryce, government director of CNCF. “Kusari Inspector delivers a key, automated layer to this course of. It helps our contributors guarantee initiatives stay safe whereas sustaining the excessive improvement velocity that our neighborhood calls for.”
“OpenSSF has an extended historical past of collaboration with Kusari—from the contribution of GUAC to sustaining OpenSSF Baseline and a number of other upstream initiatives that ship sensible steerage,” stated Steve Fernandez, GM of OpenSSF. “Making Kusari Inspector out there to our initiatives helps translate that steerage into actionable safety inside real-world improvement workflows.”
The crew will showcase Kusari improvements and open supply initiatives to attendees at this week’s KubeCon + CloudNativeCon Europe 2026 in Amsterdam at Stand #1141. Maintainers can get began instantly with the Kusari CLI or GitHub App.
Additionally Learn: The Infrastructure Battle Behind the AI Increase
[To share your insights with us, please write to psen@itechseries.com]
