Skip to main content

đź“Ł SOSS Fusion 2024 Call for Proposals is Now Open

Together we’re securing open source software for the public good.

Join the Community

The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public good.

Collaborate on capabilities and best practices that secure open source software.

Participate in the latest community conversations and engage with experts.

Take free courses on secure coding practices as part of our certificate program.

Explore our helpful security guides to help secure your project from the start.

October 22-23, 2024
Atlanta, Georgia

RegisterSponsorSubmit to Speak

Get a taste for all ingredients that make up secure open source software (SOSS) and explore the latest trends at the intersection of AI and security, vulnerability management, and threat assessments.

Listen Now

Read the Latest Reports From OpenSSF

Plan for Improving Software Developer Security Education


2023 Annual Report

Cybersecurity in Energy Infrastructure Whitepaper

Recent Blog Posts

April 22, 2024

Join Us at the OSS Security Meetup in Tokyo, Japan With General Manager Omkhar + SOSS Community Day North America Event Report

We are excited to announce that the members of the Open Source Security Foundation (OpenSSF), A cross-industry initiative that brings together the industry’s most important open source security initiatives and…
Beyond Scores with OpenSSF ScorecardBlogGuest Blog
April 17, 2024

Beyond Scores with OpenSSF Scorecard: Granular Structured Results for Custom Policy Enforcement

OpenSSF Scorecard is a tool to help open source projects reduce software supply-chain risks. Scorecard analyzes projects against a series of heuristics and generates scores from 0–10 for the project…
Social Engineering Takeover BlogBlog
April 15, 2024

Open Source Security (OpenSSF) and OpenJS Foundations Issue Alert for Social Engineering Takeovers of Open Source Projects

The recent attempted XZ Utils backdoor (CVE-2024-3094) may not be an isolated incident as evidenced by a similar credible takeover attempt intercepted by the OpenJS Foundation, home to JavaScript projects…
Golden Egg Award WinnersBlog
April 15, 2024

Unveiling the Golden Egg Award Winners: Celebrating Excellence in Open Source Security

We’re excited to announce the winners of the Golden Egg Awards. These awards shine a light on those who go above and beyond in enriching our community. The Golden Egg…

Open source software is pervasive in data centers, consumer devices, and applications. Securing open source software requires fostering collaboration, establishing best practices, and developing innovative solutions.

Join the growing list of organizations supporting the advancement of securing open source technology and funding the development and adoption of OpenSSF initiatives.

Explore Membership in OpenSSF