OpenSSF

Nov 09

How to Use Open Source to Help Comply with SCM Best Practices: A Tutorial on Combining OpenSSF Scorecard and Legitify

By OpenSSF Blog, Guest Blog

A few weeks ago, the OpenSSF Best Practices Working Group published the Source Code Management (SCM) Best Practices guide. This guide is the result of a collaboration of multiple leading…

Nov 08

OpenSSF Responds to US Federal Government RFI on Open Source Software Security

By OpenSSF Blog

The OpenSSF has submitted a response to the Request For Information (RFI) on open source software (OSS) security and memory safe programming languages from the US White House Office of…

Nov 06

Alpha-Omega Grant To Help Homebrew Reach SLSA Build Level 2

By OpenSSF Alpha-Omega, Blog

Alpha-Omega is pleased to announce a grant to the Homebrew project to enable Sigstore attestations and verification of Homebrew packages. When complete the project will allow organizations to securely verify…

Nov 02

Industry Joint Statement on Article 45 in the EU eIDAS Regulation

OpenSSF Co-Signs Industry Joint Statement on Article 45 in the EU’s eIDAS Regulation

By OpenSSF Blog

The organizations that build and secure the Internet are concerned about proposed EU regulations that aim to mandate that all Web browsers recognize a new form of certificate for the…

Nov 02

Linux Foundation ISC2 OpenSSF Collaboration

Linux Foundation, ISC2 and OpenSSF Collaborate to Target Secure Code Development

By OpenSSF Blog, Press Release

Linux Foundation Training & Certification, ISC2, and Open Source Security Foundation (OpenSSF) today announced a new collaboration to empower the open source cybersecurity community through secure software development, knowledge sharing,…

Nov 01

Safe, Secure, & Trustworthy AI Executive Order

US White House Executive Order on Safe, Secure, and Trustworthy AI

By OpenSSF AI, Blog

The Biden-Harris Administration issued a landmark Executive Order on developing Artificial Intelligence (AI), harnessing the power of AI responsibly, and managing the risks of AI. Executive Order 14110 directs actions…

Nov 01

OpenJS Foundation Warns Consumer Privacy and Security at Risk in Three-Quarters of a Billion Websites

By OpenSSF Blog, Press Release

Global web infrastructure is in a precarious position based on new research by the OpenJS Foundation thanks to an OpenSSF grant. The OpenJS Foundation is announcing the results of an end-user audit…

Oct 31

OpenSSF Identifying Security Threats Working Group: Evaluating the Health of Open Source Projects

By OpenSSF Blog

This month's spotlight is on the OpenSSF Identifying Security Threats Working Group, which recently released the first version of the Security Insights Specification. This Working Group is dedicated to equipping…

Oct 30

Safeguarding Your Data – How to Harden Your Systems

By OpenSSF Blog, Guest Blog

In our increasingly digitized world, data reigns supreme. Alongside traditional valuable information like customer records and bank details, data on interactions and activity has become more valuable to companies. As…

Oct 26

Express Learning Courses Linux Foundation Training Certification

3 New Express Learning Courses on Security for Cloud Pros

By OpenSSF Blog

Security is the key theme throughout the three new free Express Learning courses launched by Linux Foundation Training & Certification for cloud professionals. The courses include: Security Self-Assessments for Open…

How to Use Open Source to Help Comply with SCM Best Practices: A Tutorial on Combining OpenSSF Scorecard and Legitify

OpenSSF Responds to US Federal Government RFI on Open Source Software Security

Alpha-Omega Grant To Help Homebrew Reach SLSA Build Level 2

OpenSSF Co-Signs Industry Joint Statement on Article 45 in the EU’s eIDAS Regulation

Linux Foundation, ISC2 and OpenSSF Collaborate to Target Secure Code Development

US White House Executive Order on Safe, Secure, and Trustworthy AI

OpenJS Foundation Warns Consumer Privacy and Security at Risk in Three-Quarters of a Billion Websites

OpenSSF Identifying Security Threats Working Group: Evaluating the Health of Open Source Projects

Safeguarding Your Data – How to Harden Your Systems

3 New Express Learning Courses on Security for Cloud Pros

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox

OpenSSF

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Subscribe to the OpenSSF Newsletter!

Get the latest announcements, event info, and the community news in your inbox