Today: A deep dive into a dispute between the backers of NATS and the CNCF, which is just the latest example of changing norms in open-source software, and the latest funding rounds in enterprise tech.
When the CNCF accepts open-source projects, it requires that any trademarks related to the project be handed over. Synadia never did that, and is now backing down from an attempt to use its ownership of the trademark as leverage to regain control of NATS.
Today on Product Saturday: Snyk introduces an API security tool, Relyance follows your data on its journey, and the quote of the week.
Today: A deep dive into a dispute between the backers of NATS and the CNCF, which is just the latest example of changing norms in open-source software, and the latest funding rounds in enterprise tech.
Welcome to Runtime! Today: A deep dive into a dispute between the backers of NATS and the CNCF, which is just the latest example of changing norms in open-source software, and the latest funding rounds in enterprise tech.
(Was this email forwarded to you? Sign up here to get Runtime each week.)
The CNCF kicked over an open-source hornet's nest last week when it revealed that Synadia was attempting to retake ownership of NATS, an open-source communications infrastructure project that it donated to the CNCF back in 2018, by asserting control over its trademark and planning to re-release it under a less-permissive license. After taking quite a bit of flak over the weekend for those tactics, it sounds like Synadia is backing down.
Synadia CEO Derek Collison told Runtime Tuesday that the company intends to transfer the NATS trademark to the CNCF at some point in the future "because we just feel that the damage to the ecosystem and the ugliness is not worth it for anyone." While nothing will be official until the lawyers sort it out, Collison said "my hope is that [this dispute] forces some open dialog outside of the CNCF and outside of NATS about the state of open source. I think open source for companies like Synadia is at a crossroads."
A quick recap is probably necessary for everyone who had other things to do this weekend.
It is not entirely clear why it took the CNCF five years to realize it didn't actually own the NATS trademark, during which time it conducted several security audits on behalf of the project (including one completed after Synadia kicked off the dispute) and promoted it at industry events. Chris Aniszczyk, CTO of the foundation, told Runtime that "we have 200-plus projects, and we've never had a case where this has happened. We just assume all of our companies and members, over 700 of them, who all have signed an agreement and know the IP rules very clearly, would eventually adhere to them."
However, after the last few days it appears Collison and Synadia are now willing to recognize that the original CNCF agreement requires a transfer of the trademark, which would make it impossible for Synadia to call any code relicensed under the BSL "NATS." Collison said Tuesday he was hopeful Synadia and the CNCF could find some middle ground between forking the project and archiving it, a stage in which the CNCF and the Linux Foundation still control the trademark but no longer provide support.
Chainguard raised $356 million in Series D funding, which values the supply-chain security startup at $3.5 billion.
Veza scored $108 million in Series D funding for its identity management security technology.
Endor Labs landed $93 million in Series B funding as it continues to develop its application security software from "a safe position to continue to build, while weathering market volatility."
Lightrun raised $70 million in Series B funding for its observability software, which promises to automatically detect and fix issues in code.
Sentra scored $50 million in Series B funding as it looks to "grow its team of data security experts and continue to expand its platform," which helps companies secure their data.
Reducto landed $24.5 million in Series A funding for its document parsing technology, which helps companies manage unstructured data.
Super Micro missed Wall Street's estimates for revenue and profit by a wide margin, sending shares of the server maker down 19% in after-hours trading.
Meta introduced an API for its Llama large-language models that will make it easier for developers to incorporate those models into their apps and services.
Oracle's Cerner Health division is just starting to recover from a five-day outage (!) "after engineers conducting maintenance work mistakenly deleted critical storage connected to a key database," according to CNBC.
Thanks for reading — see you Thursday!
When the CNCF accepts open-source projects, it requires that any trademarks related to the project be handed over. Synadia never did that, and is now backing down from an attempt to use its ownership of the trademark as leverage to regain control of NATS.
Today on Product Saturday: Snyk introduces an API security tool, Relyance follows your data on its journey, and the quote of the week.
Today: What the first week of Q1 Big Tech earnings says about the enterprise market heading into the rest of the year, the creators of NATS are trying to pull off the old-fashioned "takesies-backsies" gambit with the CNCF, and the latest enterprise moves.
Today: Microsoft reveals its progress toward reorienting the company around security, AWS picks an interesting time for some "routine capacity management," and the latest funding rounds in enterprise tech.
