Open Source Funded

Issue #13: funding, foundations, AI pressure, and open-source jobs

Mon, 22 Jun 2026 09:00:00 +0000

This week in Open Source Funded: grant and sponsorship news leads the issue, with EXANTE’s €1 million Gecko Fund, 67 new NLnet grants, OpenAI backing Rust, Django agencies funding an Executive Director search, and Mitchell Hashimoto pledging another $400,000 to Zig. There are also foundation and governance moves from Raku, DDEV, AgriOS, Dronecode, Commonhaus, CNCF, and others; open-source commercialization and licensing updates from xyflow, Prismatic, Flarum, ownCloud, and Synergy; and a heavy run of AI-related maintainer-capacity stories, from security report volume to AI-generated PR and patch noise. The jobs section has new roles across foundations, community work, commercial open source, and licensing.

Issue #12: Funding, EU policy, licensing scrutiny, maintenance strategy, and AI pressure

Mon, 15 Jun 2026 09:00:00 +0000

This week in Open Source Funded: standards participation showed up as maintainer infrastructure, fellowship, fundraising, donation appeals, and public-sector programs put money behind open source work, NSF announced a secure open-source ecosystem funding program, CNCF described OCI credit-funded Arm64 testing work across cloud-native projects, OpenAI opened a Codex support program for maintainers, Sovereign Tech-backed work reached Scala documentation and LLVM BOLT security, Rust, PHP, FSF, Ruby Central, FreeBSD, and Chainguard updates put maintenance, sustainability, free-software advocacy, ecosystem security funding, vulnerability remediation, and AI-assisted vulnerability discovery in the foreground, NLnet began shifting from NGI Zero toward Open Internet Stack programs, AI document and data interoperability work and European technology-sovereignty planning continued, Supabase and PgDog raised funding around open-source Postgres infrastructure, TensorZero archived its open-source repository after promoting seed funding, Intel ended development of BigDL, Snapmaker set aside community funding for an open-source 3D-printer ecosystem, European office-suite sovereignty and provenance arguments continued as Nextcloud described open source’s move into geopolitics, Conda packaging terms raised licensing-surprise questions, Akka.NET, Unleash, Fossorial, and Snowplow highlighted downstream and commercial-license decisions, Bambuddy put Bambu Lab cloud dependence and AGPL compliance back in view, commercial investment flowed into ecosystem security and core infrastructure patching, organizations joined open source foundations, coalitions, patent communities, research consortia, and standards efforts, LF Energy expanded its open-source grid portfolio, RedMonk, Jens Oliver Meiert, Gnuxie, and the Civil Infrastructure Platform mapped commercial and long-term maintenance tradeoffs, Vim Classic launched as an AI-free editor fork, curl prepared to pause vulnerability intake for a month while restating its human-review stance, and AI-assisted security and coding tools kept turning vulnerability discovery, disclosure, CVE-volume forecasts, remediation, legal compliance, contribution policy, developer tooling, FFmpeg zero-days, CI/CD abuse detection, Agentjacking, agent-generated pull requests, review culture and bottlenecks, ad-supported tool extensions, platform capacity, and maintainer boundaries into open source governance questions.

Issue #11: AI pressure, open source funding, and governance shifts

Mon, 08 Jun 2026 09:00:00 +0000

This week in Open Source Funded: commercial open source companies raised money, maintainers received new funding offers and security-audit support, governments kept tying open source to digital sovereignty, and AI-assisted development kept turning review, security, and provenance into governance questions.

Funding, sponsorship, and sustainability

Unleash is moving its open-source feature-management repository from Apache 2.0 to AGPLv3 to keep the project sustainable. The company says its enterprise distribution remains commercially licensed, while official open-source Docker images and SDKs keep their existing licenses (Unleash).

Issue #10: IBM and Red Hat's $5B pledge, F-Droid funding, and OpenAI's OSS credits

Mon, 01 Jun 2026 09:00:00 +0000

This week in Open Source Funded, IBM and Red Hat announced Project Lightwell, a $5 billion commitment around securing open source software with AI (IBM). F-Droid received $50,000 from FLOSS/fund (F-Droid), NLnet opened new grant calls (NLnet), the European Commission reportedly looked to open source as part of its tech-sovereignty strategy (Agence Europe), OpenAI offered Codex credits and tools to open source maintainers (OpenAI), Packagist detailed funded Composer and Packagist.org supply-chain work while launching sponsorships (Packagist), Scala completed a Sovereign Tech Fund-backed security audit (Scala), RedMonk highlighted hardened-image revenue models that share subscription income with maintainers (RedMonk), dbt Core v2 moved more commercial engine work into the Apache-licensed open source distribution as Fivetran and dbt Labs completed their merger (dbt Labs, Fivetran/dbt Labs), and Kefir moved new compiler development private, citing sustainability concerns (Kefir).

Issue #9: pgBackRest funding, Bambu AGPL pressure, and AI disclosure load

Mon, 25 May 2026 09:00:00 +0000

This week in Open Source Funded, the most direct sustainability win came from pgBackRest: after warnings that the PostgreSQL backup project could not continue on one sponsor alone, a coalition including AWS, Supabase, pgEdge, Tiger Data, Percona, and Eon.io stepped in to fund ongoing development.

The licensing story of the week was still Bambu Lab. Software Freedom Conservancy published a detailed AGPLv3 response, while coverage from Aftermath, The Verge, and Open Source For You showed how one fork dispute became a much broader fight over compliance, community trust, and control of 3D-printer software.

Issue #8: KDE funding, AI vulnerability pressure, and foundation homes

Mon, 18 May 2026 09:00:00 +0000

This week in Open Source Funded, European public-interest funding showed up in a big way: the Sovereign Tech Fund is investing more than €1.2 million in KDE over 2026 and 2027.

The other big theme was AI pressure on open source security. Maintainers, public-sector teams, vendors, and lawmakers are all trying to respond to a world where vulnerability discovery and vulnerability reporting can scale faster than triage capacity.

There was also plenty of governance activity: Zulip formed a nonprofit foundation, Block handed Goose to the Linux Foundation, Wikimedia joined the Digital Public Goods Alliance, and several organizations moved closer to Linux Foundation-hosted ecosystems.

Issue #7: AI pressure, funding, and foundation governance

Mon, 11 May 2026 09:00:00 +0000

This week in Open Source Funded, AI pressure kept showing up in open source governance: public repositories, vulnerability discovery, commit attribution, low-quality pull requests, and even unofficial ports using established project names.

There was also important funding and foundation activity. CopilotKit raised $27 million, RadixArk launched with $100 million around SGLang, Dell and Lenovo became premier LVFS sponsors, Linea Stack moved into Linux Foundation Decentralized Trust governance, and Microcks became a CNCF incubating project.

Issue #6: funding rounds, foundation homes, and AI pressure on public code

Mon, 04 May 2026 09:00:00 +0000

This week in Open Source Funded, the strongest pattern was pressure: pressure to fund infrastructure, pressure to formalize governance, pressure to draw clearer boundaries around AI tooling, and pressure on public code repositories as security concerns rise.

The money side was active. Cloudsmith, JuliaHub, Expo, ComfyUI, Orkes, and OpenObserve all raised new funding around commercial layers built near open source ecosystems. Foundation activity was also busy, with O-RAN moving under LF Networking, Symposium joining the Rust Innovation Lab, and the Tokenized Assets Standard becoming a new LF Decentralized Trust lab.

Issue #5: foundation moves, private turns, and sharper AI rules

Mon, 20 Apr 2026 09:00:00 +0000

This week in Open Source Funded, the pattern was consolidation under pressure.

One project moved into a new foundation home. Another got a more explicit operating plan for long-term survival. A high-profile startup decided openness had become too risky and took its core product private. And on the AI side, projects kept tightening the line between tool use and human responsibility, with some communities allowing assisted work and others banning machine-generated contributions outright.

Issue #4: funding signals, foundation moves, and AI review strain

Mon, 13 Apr 2026 09:00:00 +0000

This week in Open Source Funded, projects kept moving into foundation structures just as the funding picture looked uneven again.

Apache picked up a major donation and turned it into a bigger responsible-AI funding push. CPython maintenance funding was extended. GitButler and SiFive landed fresh capital. But Session warned it may only have about 90 days of runway left. Across the rest of the cycle, the AI story stayed familiar: better tools often meant more review, more policy, and more operational burden for maintainers. The sharper licensing questions moved toward AI model terms, provenance fights, and what “open” will mean in the next round of model releases. Meanwhile, the VeraCrypt / WireGuard signing mess showed how much open source distribution still depends on third-party chokepoints.

Issue #3: foundation handoffs, office-suite drama, and AI review pressure

Mon, 06 Apr 2026 09:00:00 +0000

This week in Open Source Funded, open source kept getting more formal structure at exactly the moment its human support systems looked shakier.

Several projects moved into foundation homes or foundation-run structures. But the rest of the week was rougher: office-suite communities fell into public licensing and governance fights, security funding paused in visible ways, maintainer succession remained fragile, and AI kept pushing more cost into review queues instead of removing it.

Issue #2: Foundation moves, sustainability pressure, and AI governance friction

Mon, 30 Mar 2026 09:00:00 +0000

This week in Open Source Funded, the clearest pattern is institutionalization.

Several projects moved under foundation governance or advanced inside existing foundation maturity ladders. Around that, the rest of the week’s stories kept returning to the same questions: who is paying for the commons, what kinds of support actually matter, and how much extra policy and review work AI is now creating for open source projects.

Projects joining a foundation

Per this issue’s editorial rules, this section also includes projects advancing to a new stage inside an existing foundation.

Issue #1: Security grants, maintainer funding, and support for open source commons

Mon, 23 Mar 2026 09:00:00 +0000

Welcome to the first issue of Open Source Funded, a weekly roundup of grants, sponsorships, endowments, and other financial support for open source projects and the institutions around them.

This opening issue reflects one clear editorial bias: we are prioritizing pure open source projects, foundations, and shared infrastructure over startup fundraising rounds.

The strongest project-focused funding signals this week

Linux Foundation, OpenSSF, and Alpha-Omega announced $12.5 million for open source security

The biggest headline in the source list is the $12.5 million grant funding announcement tied to open source security. The Linux Foundation and OpenSSF positioned it as support for securing critical open source infrastructure, which makes it highly relevant to maintainers even if the money is being organized at the ecosystem level.