During the Open Source Software Security Summit II in Washington, DC on May 12 – 13, 2022, The Linux Foundation and OpenSSF gathered a cross-section of open source developer and commercial ecosystem representatives along with leaders and experts from key U.S. federal agencies to reach a consensus on high-impact actions to take to improve the resiliency and security of open source software.
The plan they agreed to focuses on 10 streams of investment, with concrete action steps for both immediate improvements and strong foundations for a more secure future.