OpenSSF

Dec 03

OpenSSF Releases Top 10 Secure Software Development Guiding Principles

By OpenSSF Blog

Today, we are excited to announce version 1.0 of the Secure Software Development Guiding Principles. These 10 principles describe a series of foundational practices that, if followed, can help provide…

Nov 29

Strengthening the Fort 🏰: OpenSSF Releases Compiler Options Hardening Guide for C and C++

By OpenSSF Blog

In the fast-changing landscape of cybersecurity, OpenSSF has taken a significant step towards enhancing the security of C and C++ software. This effort addresses a persistent class of software defects…

Nov 28

Cybersecurity in Energy Infrastructure: The Value of Open Source Software

By OpenSSF Blog

LF Energy and OpenSSF released a new whitepaper on how open source software is critical to the innovation and transformation of our energy infrastructure. Contrary to common misconceptions, OSS offers…

Nov 27

OpenSSF introduces guide to becoming a CVE Numbering Authority as an Open Source project

By OpenSSF Blog

The Open Source Security Foundation (OpenSSF) is excited to announce a new guide for Open Source projects that are interested in issuing and managing their own CVE IDs through the…

Nov 21

Sigstore: Simplifying Code Signing for Open Source Ecosystems

By OpenSSF Blog, Sigstore

This month’s spotlight focuses on the Sigstore project. Digital signatures play a critical role in the software supply chain, by providing verifiable attributes of authentication, integrity, and non-repudiation of artifacts…

Nov 20

OpenSSF publishes Mission, Vision, Values, and Strategy

By OpenSSF Blog

The open source software (OSS) community is ever-changing, and the security of OSS rapidly evolves in parallel. This requires OpenSSF to regularly re-evaluate our focus and approach to intentionally improve…

Nov 17

Securing the Software Supply Chain Report Recommends SBOM Consumption Practices for Critical Infrastructure Providers

By OpenSSF Blog

In an era where cyber threats continue to evolve, securing the software supply chain has become paramount for organizations globally. Recognizing the critical need for a robust framework, the US…

Nov 16

OpenSSF Guest Blog Editorial Review Panel

OpenSSF Kicks Off Guest Blog Editorial Review Panel to Amplify Voices in the Security Community

By OpenSSF Blog

Open source software (OSS) has grown exponentially in its adoption and usage in recent years, making its security a top priority. The Open Source Security Foundation (OpenSSF) recognizes the need…

Nov 15

Alpha-Omega to Continue Support of Rust Foundation Security Initiative in 2024

By OpenSSF Alpha-Omega, Blog

Today, Alpha-Omega is excited to announce our second year of supporting the Rust Foundation Security Initiative. We believe that this funding will build on the good work and momentum established…

Nov 14

OpenSSF Supports oss-security and (linux-)distros Mailing Lists

By OpenSSF Blog

As a part of the OpenSSF's mission to sustainably secure the development, maintenance and consumption of open source software, the OpenSSF earlier this year started to sponsor the operation of…

OpenSSF Releases Top 10 Secure Software Development Guiding Principles

Strengthening the Fort 🏰: OpenSSF Releases Compiler Options Hardening Guide for C and C++

Cybersecurity in Energy Infrastructure: The Value of Open Source Software

OpenSSF introduces guide to becoming a CVE Numbering Authority as an Open Source project

Sigstore: Simplifying Code Signing for Open Source Ecosystems

OpenSSF publishes Mission, Vision, Values, and Strategy

Securing the Software Supply Chain Report Recommends SBOM Consumption Practices for Critical Infrastructure Providers

OpenSSF Kicks Off Guest Blog Editorial Review Panel to Amplify Voices in the Security Community

Alpha-Omega to Continue Support of Rust Foundation Security Initiative in 2024

OpenSSF Supports oss-security and (linux-)distros Mailing Lists

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox

OpenSSF

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Subscribe to the OpenSSF Newsletter!

Get the latest announcements, event info, and the community news in your inbox