Register for Open Source SecurityCon

November 10, 2025 | Atlanta, Georgia

The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public good.

Contribute to Technical Initiatives

Collaborate on capabilities and best practices that secure open source software.

Start a Conversation

Participate in the latest community conversations and engage with experts.

Take Security Training

Take free courses on secure coding practices as part of our certificate program.

Read our Security Guides

Explore our helpful security guides to help secure your project from the start.

Warning: Undefined variable $output in /code/wp-content/themes/salient-child/vc-addons/members-api-carousel-linux.php on line 66

Members

Meet Our Members

Deprecated: Invalid characters passed for attempted conversion, these have been ignored in /code/wp-content/themes/salient-child/vc-addons/projects-linux.php on line 172

Projects

GUAC

Directed, actionable insights into the security of your software supply chain.

Learn More

OSPS Baseline

Structured security requirements aligned with international frameworks, standards, and regulations.

Learn More

Sigstore

sigstore is a standard for signing, verifying, and protecting software.

Learn More

SLSA

Safeguarding artifact integrity across any software supply chain.

Learn More

All Projects

Deprecated: Invalid characters passed for attempted conversion, these have been ignored in /code/wp-content/themes/salient-child/vc-addons/working-groups-linux.php on line 172

Working Groups

AI/ML Security

Using AI securely ("security for AI") and using AI to improve security of other products ("AI for security").

Learn More

Global Cyber Policy

Multi-discipline approach to international regulation and legislation and application of cybersecurity frameworks.

Learn More

Supply Chain Integrity

Helping people understand and make decisions on the provenance of the code they maintain, produce and use.

Learn More

Vulnerability Disclosures

Improving the overall security of the OSS ecosystem by helping advance vulnerability reporting and communication.

Learn More

All Working Groups

What’s in the SOSS? Podcast

Listen on Apple Podcasts Listen on Spotify Listen on Overcast Listen on Pocket Casts

OpenSSF Hosted Events

OpenSSF events are a great opportunity to get involved with the OpenSSF community across the security and open source ecosystem. Join us and share ideas, progress, and collaborate on securing open source software.

Read the Latest Reports From OpenSSF

Practical Guide for Building Robust AI/ML Pipeline Security

Secure Open Source Software Vision Brief 2025

2024 Annual Report

Recent Blog Posts

VIEW ALL BLOGS →

August 28, 2025

OpenSSF Celebrates Global Momentum, AI/ML Security Initiatives and Golden Egg Award Winners at Community Day Europe

Foundation honors community achievements and strategic efforts to secure ML pipeline during community event in Amsterdam AMSTERDAM – OpenSSF Community Day Europe – August 28, 2025 – The Open Source…

OpenSSF

Love0

Blog Guest Blog

August 27, 2025

Trustify joins GUAC

By Ben Cotton and Dejan Bosanac The superpower of open source is multiple people working together on a common goal. That works for projects, too. GUAC and Trustify are two…

OpenSSF

Love0

Blog

August 22, 2025

What Not to Miss at Open Source Summit & OpenSSF Community Day Europe

The countdown is on! From August 25 to 28, 2025, the open source security community will gather in Amsterdam for Open Source Summit Europe and OpenSSF Community Day Europe. These…

OpenSSF

Love0

Open source software is pervasive in data centers, consumer devices, and applications. Securing open source software requires fostering collaboration, establishing best practices, and developing innovative solutions.

Join the growing list of organizations supporting the advancement of securing open source technology and funding the development and adoption of OpenSSF initiatives.

Explore Membership in OpenSSF

Mastodon

Register for Open Source SecurityCon

November 10, 2025 | Atlanta, Georgia

The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public good.

Contribute to Technical Initiatives

Start a Conversation

Take Security Training

Read our Security Guides

Members

Projects

GUAC

OSPS Baseline

Sigstore

SLSA

Working Groups

AI/ML Security

Global Cyber Policy

Supply Chain Integrity

Vulnerability Disclosures

What’s in the SOSS? Podcast

OpenSSF Hosted Events

Read the Latest Reports From OpenSSF

Recent Blog Posts

VIEW ALL BLOGS →

OpenSSF Celebrates Global Momentum, AI/ML Security Initiatives and Golden Egg Award Winners at Community Day Europe

Trustify joins GUAC

What Not to Miss at Open Source Summit & OpenSSF Community Day Europe

Open source software is pervasive in data centers, consumer devices, and applications. Securing open source software requires fostering collaboration, establishing best practices, and developing innovative solutions.

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox