OpenSSF

Jul 19

Recognizing Excellence in OSS Community: Golden Egg Award Nominations Are Now Open!

By OpenSSF Blog

Submitting a nomination is easy! Fill out the nomination form, providing details about the nominee’s contributions and why you believe they deserve the Golden Egg Award.

Jul 17

Love0

AI Cyber Challenge (AIxCC) and the Needle Linux Kernel Vulnerability – Part 2

By OpenSSF Blog

In part 1 we discussed the Artificial Intelligence Cyber Challenge (AIxCC), a two-year competition to create AI systems that find software vulnerabilities and develop fixes to them. We also discussed…

Jul 17

Love0

The Linux Foundation and OpenSSF Release Report on the State of Education in Secure Software Development

By OpenSSF Blog, Press Release

Findings show nearly one-third of industry professionals are not familiar with secure software development practices

Jul 10

Love0

AI Cyber Challenge (AIxCC) and the Needle Linux Kernel Vulnerability1

AI Cyber Challenge (AIxCC) and the Needle Linux Kernel Vulnerability – Part 1

By OpenSSF Blog

Could artificial intelligence (AI) practically help find and fix vulnerabilities in a scalable way? We don’t know for certain, but there’s hope that it could. In this article, we’ll look…

Jul 08

Love0

Learn How To Develop Secure Software!

By OpenSSF Blog

The Open Source Security Foundation (OpenSSF), in partnership with Linux Foundation Training & Certification, offers a free online training course, Developing Secure Software (LFD121). Those who complete the course and…

Jul 05

Love0

Cover_Secure_Software_Development_Education_2024_Survey

Why are Organizations Struggling to Implement Secure Software Development?

By OpenSSF Blog

The Secure Software Development Education 2024 Survey, conducted through a partnership between the Open Source Security Foundation (OpenSSF) and Linux Foundation (LF) Research, examines the secure software development education needs of…

Jul 03

Love0

Chainguard Enhances Security With OSV Advisory Feed

By OpenSSF Blog, Guest Blog

In today's rapidly evolving open source ecosystem, managing vulnerabilities efficiently is crucial. To address this,Chainguard is now publishing its security advisory feed in the Open Source Vulnerabilities (OSV) format. This…

Jun 28

Love0

Improving OpenSSF Scorecard Scores: StepSecurity Automation for Four Key Checks

By OpenSSF Blog, Guest Blog

Implementing security best practices is essential for open source maintainers to ensure their projects are secure and free from vulnerabilities. However, many maintainers find this task complex and time-consuming when…

Jun 26

Love0

A Deep Dive into SBOMit and Attestations

By OpenSSF Blog

December 2023 saw the launch of SBOMit, a project that helps enhance the reliability and integrity of SBOMs (Software Bills of Materials). It does so by including, along with SBOMs,…

Jun 21

Love0

An Open Source Approach to Threat Mitigation in AWS

By OpenSSF Blog, Guest Blog

The security of cloud environments is a top priority for organisations worldwide. According to research by Omdia, supporting cloud and digital transformation projects is one of the top three priorities…

Recognizing Excellence in OSS Community: Golden Egg Award Nominations Are Now Open!

AI Cyber Challenge (AIxCC) and the Needle Linux Kernel Vulnerability – Part 2

The Linux Foundation and OpenSSF Release Report on the State of Education in Secure Software Development

AI Cyber Challenge (AIxCC) and the Needle Linux Kernel Vulnerability – Part 1

Learn How To Develop Secure Software!

Why are Organizations Struggling to Implement Secure Software Development?

Chainguard Enhances Security With OSV Advisory Feed

Improving OpenSSF Scorecard Scores: StepSecurity Automation for Four Key Checks

A Deep Dive into SBOMit and Attestations

An Open Source Approach to Threat Mitigation in AWS

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox

OpenSSF

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Subscribe to the OpenSSF Newsletter!

Get the latest announcements, event info, and the community news in your inbox