As malicious attacks grow more sophisticated with AI, new detection and prevention methods are crucial. Stacklok is developing innovative tools and approaches to counter supply chain attacks, working in alignment with open source communities
Craig McLuckie (co-creator of Kubernetes) and Luke Hinds (creator of Sigstore) founded Stacklok in 2023 to enhance the safety of producing and consuming open source software. As attacks on open source software increase and become more sophisticated, the need for enhanced security measures grows. Open source maintainers, often unpaid volunteers with other jobs, lack time and access to tools for proactive security. Traditional security tools for enterprise developers focus on CVEs but may miss other threats like malicious or abandoned projects. Stacklok aims to address these challenges with innovative solutions.