The Linux Foundation Just United 19 Tech Giants to Shield Open Source From AI-Powered Attacks

by Geth Author

AI models can now scan an entire open source repository and surface exploitable vulnerabilities in minutes. That capability — once the domain of well-resourced security researchers — is rapidly becoming available to anyone with API access to a frontier model. The Linux Foundation's response, launched June 25, 2026, is called Akrites: a coordinated industry effort to build defenses before the offensive capability outruns the defensive one.

The Problem Akrites Is Solving

Open source software underpins nearly everything — banking systems, hospital infrastructure, power grids, telecom networks, and AI labs themselves all run on shared libraries maintained by small, often underfunded teams. Historically, the bottleneck on attacking these projects was the attacker's manual effort: reading code, understanding context, reasoning about exploitability. That bottleneck is evaporating fast.

Frontier AI models trained on codebases can identify memory corruption bugs, authentication bypasses, and injection vulnerabilities at machine speed. Once access to these capabilities is broadly available, bad actors who previously lacked the technical expertise to mount sophisticated attacks will have the tools to do it automatically. The window for proactive defense is now.

What Akrites Actually Does

The Linux Foundation's announcement establishes two concrete structures: a shared Security Incident Response Team (SIRT) staffed by participating organizations, and a standardized Coordinated Vulnerability Disclosure (CVD) process built on confidentiality-first principles. The idea is to create a single trusted pipeline for reporting, reproducing, remediating, and disclosing vulnerabilities in critical open source projects — with enough staffing and tooling behind it to actually act on findings quickly rather than letting them sit in maintainer inboxes for months.

Seed funding comes from Alpha-Omega, a directed fund of the Linux Foundation that already supports security work across the open source ecosystem.

Who's In

The founding member list is notable for its breadth. Amazon Web Services, Anthropic, Chainguard, Cisco, Citi, Endor Labs, Ericsson, Google, IBM, JPMorganChase, Microsoft and GitHub, NVIDIA, OpenAI, RapidFort, Red Hat, the Rust Foundation, Sonatype, Vodafone, and Zscaler all signed on at launch — 19 organizations spanning cloud providers, AI labs, financial institutions, telecoms, and open source stewards, all agreeing that the threat is real enough to set competition aside and collaborate.

The AI labs' participation is worth noting specifically. Anthropic and OpenAI are among the organizations whose models could theoretically be weaponized for the kind of AI-assisted vulnerability scanning Akrites is designed to defend against. Their presence as founding members represents an acknowledgment that they bear some responsibility for funding the defensive infrastructure their tools could stress-test.

The Timing

Akrites arrives in the same month that AI security research teams demonstrated finding tens of thousands of real vulnerabilities in critical infrastructure codebases using AI-assisted scanning techniques. The capability isn't theoretical — it exists and is being used. The open source community's response to date has been fragmented and chronically underfunded. Akrites is an attempt to change that structural problem with coordinated institutional support.

Whether the project develops real staying power will depend on how much engineering time the founding members actually dedicate versus how much is press-release participation. The structure looks right. The test is follow-through.