[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"article-ibm-red-hat-5b-open-source-ai-security-zh":3,"article-related-ibm-red-hat-5b-open-source-ai-security-zh":30,"series-industry-192ba990-8e71-4457-85ed-d53fbdd1685d":81},{"id":4,"slug":5,"title":6,"content":7,"summary":8,"source":9,"source_url":10,"author":11,"image_url":12,"cover_image":12,"category":13,"language":14,"translated_content":11,"related_article_id":15,"keywords":16,"key_takeaways":22,"views":26,"created_at":27,"published_at":28,"topic_cluster_id":29},"192ba990-8e71-4457-85ed-d53fbdd1685d","ibm-red-hat-5b-open-source-ai-security-zh","IBM、Red Hat 投入 50 億美元守護開源 AI 安全","\u003Cp data-speakable=\"summary\">\u003Ca href=\"https:\u002F\u002Fwww.ibm.com\" target=\"_blank\" rel=\"noopener\">IBM\u003C\u002Fa> 與 \u003Ca href=\"https:\u002F\u002Fwww.redhat.com\" target=\"_blank\" rel=\"noopener\">Red Hat\u003C\u002Fa> 在 \u003Ca href=\"\u002Fnews\u002F2026-system-design-interview-cheat-sheet-page-zh\">2026\u003C\u002Fa> 年 5 月 28 日宣布投入 50 億美元，啟動 Project Lightwell，用 AI 強化開源軟體安全。\u003C\u002Fp>\u003Cp>這項計畫鎖定企業供應鏈中的開源風險，主打漏洞回報、驗證修補與上游回補。IBM 同時拉進超過 2 萬名工程師，並建立一個企業級清算中心，讓敏感安全問題能先經由中介處理。\u003C\u002Fp>\u003Ctable>\u003Cthead>\u003Ctr>\u003Cth>項目\u003C\u002Fth>\u003Cth>數值\u003C\u002Fth>\u003C\u002Ftr>\u003C\u002Fthead>\u003Ctbody>\u003Ctr>\u003Ctd>投入金額\u003C\u002Ftd>\u003Ctd>50 億美元\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>宣布日期\u003C\u002Ftd>\u003Ctd>2026 年 5 月 28 日\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>工程師規模\u003C\u002Ftd>\u003Ctd>超過 20,000 人\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>Fortune 500 對 OSS 依賴\u003C\u002Ftd>\u003Ctd>超過 90%\u003C\u002Ftd>\u003C\u002Ftr>\u003Ctr>\u003Ctd>Anthropic Mythos Preview 找出漏洞\u003C\u002Ftd>\u003Ctd>近 3,900 個\u003C\u002Ftd>\u003C\u002Ftr>\u003C\u002Ftbody>\u003C\u002Ftable>\u003Ch2>發生了什麼\u003C\u002Fh2>\u003Cp>Project Lightwell 的定位很直接：把開源安全變成可交付的企業服務。IBM 表示，企業可以先把敏感漏洞交給中介，再拿到可直接上線的修補版本，最後把修正推回社群維護流程。\u003C\u002Fp>\n\u003Cfigure class=\"my-6\">\u003Cimg src=\"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780257770685-q3cb.png\" alt=\"IBM、Red Hat 投入 50 億美元守護開源 AI 安全\" class=\"rounded-xl w-full\" loading=\"lazy\" \u002F>\u003C\u002Ffigure>\n\u003Cp>這種做法和傳統「自己找人修、自己驗證、自己上線」的模式不同。對大型企業來說，它把漏洞處理拆成三段，降低內部安全團隊與維運團隊的協調成本，也減少修補在生產環境翻車的機率。\u003C\u002Fp>\u003Cp>計畫不只涵蓋 \u003Ca href=\"https:\u002F\u002Fwww.redhat.com\u002Fen\u002Fproducts\" target=\"_blank\" rel=\"noopener\">Red Hat\u003C\u002Fa> 產品，也會處理社群維護的獨立程式碼，範圍包括函式庫、語言工具鏈、AI 框架與\u003Ca href=\"\u002Fnews\u002Ftiny-data-centers-could-move-into-us-homes-zh\">資料\u003C\u002Fa>串流平台。IBM 也強調，自己已經在使用超過 62,000 個開源套件，對其中 10,000 多個有深入經驗，這次要把既有能力包成商業化流程。\u003C\u002Fp>\u003Cul>\u003Cli>AI 輔助的漏洞審查、分類與優先順序判定\u003C\u002Fli>\u003Cli>安全修補開發與相依套件加固\u003C\u002Fli>\u003Cli>面向企業環境的版本工程與驗證\u003C\u002Fli>\u003Cli>可訂閱的修補驗證與生命週期管理\u003C\u002Fli>\u003C\u002Ful>\u003Cp>IBM 也點名多家早期試用者，包含 Bank of America、BNY、Citi、Goldman Sachs、JPMorganChase、Mastercard、Morgan Stanley、Royal Bank of Canada、State Street、Visa 與 Wells Fargo。這些金融機構會先測試\u003Ca href=\"\u002Fnews\u002Fblink-kempower-distributed-ev-charging-rollout-zh\">系統\u003C\u002Fa>如何辨識、驗證與修復問題，再決定是否擴大導入。\u003C\u002Fp>\u003Ch2>為什麼重要\u003C\u002Fh2>\u003Cp>開源已經是企業基礎設施的底層，但 \u003Ca href=\"\u002Ftag\u002Fai-工具\">AI 工具\u003C\u002Fa>也讓找漏洞、挖相依風險變得更快。IBM 的賣點是，把「發現問題」和「拿到可信修補」之間的時間壓縮，讓企業不用自己從零搭一條安全生產線。\u003C\u002Fp>\n\u003Cfigure class=\"my-6\">\u003Cimg src=\"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780257772663-e7q3.png\" alt=\"IBM、Red Hat 投入 50 億美元守護開源 AI 安全\" class=\"rounded-xl w-full\" loading=\"lazy\" \u002F>\u003C\u002Ffigure>\n\u003Cp>對開發者來說，這代表開源維護不再只是社群義務，也可能變成一個更明確的商業服務層。對產業來說，開源安全開始像雲端、監控、身分管理一樣，成為企業願意付費的標準項目。\u003C\u002Fp>\u003Cp>另一個現實是規模。Fortune 500 有超過 90% 依賴開源，這種依賴不是單一漏洞事件可以解決，而是要有持續驗證、快速回補、上游協作的機制。Lightwell 若跑得通，會把「修漏洞」從零散任務變成可複製流程。\u003C\u002Fp>\u003Cp>IBM 執行長 Arvind Krishna 把這次行動形容為開源建構與保護方式的轉折點。更尖銳的問題是：企業會把它當成一次性安全採購，還是把它視為未來關鍵開源資產的標準維護模板？\u003C\u002Fp>","IBM 與 Red Hat 推出 Project Lightwell，砸 50 億美元把 AI 用在開源安全、漏洞驗證與修補分發，先從企業供應鏈下手。","newsroom.ibm.com","https:\u002F\u002Fnewsroom.ibm.com\u002F2026-05-28-ibm-and-red-hat-commit-5-billion-to-redefine-the-future-of-open-source-in-the-ai-era",null,"https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1780257770685-q3cb.png","industry","zh","719e91f4-4f53-4dd2-a1e6-3f6440226425",[17,18,19,20,21],"IBM","Red Hat","開源安全","AI","供應鏈安全",[23,24,25],"50 億美元的 Project Lightwell，把 AI、漏洞驗證和上游修補整合成企業服務。","這項計畫瞄準的是開源供應鏈，而不是單一產品，範圍涵蓋社群碼與 Red Hat 生態。","對企業來說，重點是把修漏洞流程外包成可驗證、可訂閱的安全管線。",6,"2026-05-31T20:02:26.812854+00:00","2026-05-31T20:02:26.805+00:00","934dbacd-9bb0-45c6-8e73-084b26489646",{"tags":31,"relatedLang":40,"relatedPosts":44},[32,34,35,37,38],{"name":18,"slug":33},"red-hat",{"name":21,"slug":21},{"name":17,"slug":36},"ibm",{"name":19,"slug":19},{"name":20,"slug":39},"ai",{"id":15,"slug":41,"title":42,"language":43},"ibm-red-hat-5b-open-source-ai-security-en","IBM, Red Hat pledge $5B for open source AI security","en",[45,51,57,63,69,75],{"id":46,"slug":47,"title":48,"cover_image":49,"image_url":49,"created_at":50,"category":13},"9a0692ba-a9c5-42eb-823d-8a0e6e6ae3fc","openai-ipo-filing-turns-hype-into-scrutiny-zh","OpenAI IPO 讓神話變審核","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781042614962-bj12.png","2026-06-09T22:03:04.524304+00:00",{"id":52,"slug":53,"title":54,"cover_image":55,"image_url":55,"created_at":56,"category":13},"40d4f012-36b6-4b8f-b470-30242a0b8483","skatteetaten-public-sector-ai-should-be-judged-by-outcomes-zh","Skatteetaten 證明公部門 AI 應該看成果，不是看噱頭","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781038986405-p8cf.png","2026-06-09T21:02:32.1198+00:00",{"id":58,"slug":59,"title":60,"cover_image":61,"image_url":61,"created_at":62,"category":13},"f937e16b-7b3c-4ec8-b9f6-2b6031c6892c","openai-ipo-filing-wall-street-test-zh","OpenAI IPO 登場，華爾街先看這 5 件事","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781032675072-oq1m.png","2026-06-09T19:17:23.187013+00:00",{"id":64,"slug":65,"title":66,"cover_image":67,"image_url":67,"created_at":68,"category":13},"8258e540-397f-4566-8ae5-37582f3e3418","openai-latest-moves-pricing-safety-scale-zh","OpenAI 4 個最新動向：定價、安全、規模都在變","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781031777355-odh9.png","2026-06-09T19:02:26.913687+00:00",{"id":70,"slug":71,"title":72,"cover_image":73,"image_url":73,"created_at":74,"category":13},"5a3f8c97-afa9-43cd-a5f7-64a1fcfd99d2","risc-v-mini-pcs-worth-buying-now-future-bet-zh","RISC-V 迷你電腦現在值得買，但只適合押注未來","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781026383355-9003.png","2026-06-09T17:32:31.318476+00:00",{"id":76,"slug":77,"title":78,"cover_image":79,"image_url":79,"created_at":80,"category":13},"651bdda4-2566-4185-a33d-254862d4290d","fedora-44-risc-v-widens-linux-board-support-zh","Fedora 44 RISC-V 把支援面擴到 17 板","https:\u002F\u002Fxxdpdyhzhpamafnrdkyq.supabase.co\u002Fstorage\u002Fv1\u002Fobject\u002Fpublic\u002Fcovers\u002Finline-1781025476806-1woq.png","2026-06-09T17:17:24.257564+00:00",[82,87,92,97,102,107,112,117,122,127],{"id":83,"slug":84,"title":85,"created_at":86},"ee073da7-28b3-4752-a319-5a501459fb87","ai-in-2026-what-actually-matters-now-zh","2026 AI 真正重要的事","2026-03-26T07:09:12.008134+00:00",{"id":88,"slug":89,"title":90,"created_at":91},"83bd1795-8548-44c9-9a7e-de50a0923f71","trump-ai-framework-power-speech-state-preemption-zh","川普 AI 框架瞄準電力、言論與州權","2026-03-26T07:12:18.695466+00:00",{"id":93,"slug":94,"title":95,"created_at":96},"ea6be18b-c903-4e54-97b7-5f7447a612e0","nvidia-gtc-2026-big-ai-announcements-zh","NVIDIA GTC 2026 重點拆解","2026-03-26T07:14:26.62638+00:00",{"id":98,"slug":99,"title":100,"created_at":101},"4bcec76f-4c36-4daa-909f-54cd702f7c93","claude-users-spreading-out-and-getting-better-zh","Claude 用戶更分散，也更會用","2026-03-26T07:22:52.325888+00:00",{"id":103,"slug":104,"title":105,"created_at":106},"bd903b15-2473-4178-9789-b7557816e535","openclaw-raises-hard-question-for-ai-models-zh","OpenClaw 逼問 AI 模型價值","2026-03-26T07:24:54.707486+00:00",{"id":108,"slug":109,"title":110,"created_at":111},"eeac6b9e-ad9d-4831-8eec-8bba3f9bca6a","gap-google-gemini-checkout-fashion-search-zh","Gap 把結帳搬進 Gemini","2026-03-26T07:28:23.937768+00:00",{"id":113,"slug":114,"title":115,"created_at":116},"0740e53f-605d-4d57-8601-c10beb126f3c","google-pushes-gemini-transition-to-march-2026-zh","Google 把 Gemini 轉換延到 2026 年 3…","2026-03-26T07:30:12.825269+00:00",{"id":118,"slug":119,"title":120,"created_at":121},"e660d801-2421-4529-8fa9-86b82b066990","metas-llama-4-benchmark-scandal-gets-worse-zh","Meta Llama 4 分數風波又擴大","2026-03-26T07:34:21.156421+00:00",{"id":123,"slug":124,"title":125,"created_at":126},"183f9e7c-e143-40bb-a6d5-67ba84a3a8bc","accenture-mistral-ai-sovereign-enterprise-deal-zh","Accenture 攜手 Mistral AI 賣主權 AI","2026-03-26T07:38:14.818906+00:00",{"id":128,"slug":129,"title":130,"created_at":131},"191d9b1b-768a-478c-978c-dd7431a38149","mistral-ai-faces-its-hardest-year-yet-zh","Mistral AI 迎來最硬的一年","2026-03-26T07:40:23.716374+00:00"]