IBM and Red Hat Expand Lightwell Security Offerings IBM and Red Hat launched Lightwell subscription offerings for vulnerable open source dependencies, including a self-service Lightwell Network and a limited-availability Clearinghouse Premier tier for critical infrastructure customers. The offerings target the gap between vulnerability discovery and safe remediation in production systems that cannot handle disruptive upgrades. Enterprise AI teams are running into a practical software-supply-chain problem: AI-assisted vulnerability discovery can move faster than traditional upgrade windows. IBM and Red Hat now say Lightwell has moved into concrete subscription offerings for vulnerable third-party open source dependencies, including a self-service Lightwell Network path and a limited-availability Clearinghouse Premier tier for selected critical infrastructure customers. The launch matters because it targets a gap between finding a vulnerability and safely remediating it in production systems that cannot take disruptive upgrades. For LDS readers, the signal is not just another security product launch. It is a large incumbent trying to formalize AI-era open source patching, validation, disclosure handling, and enterprise delivery workflows as managed infrastructure.