🎙️ Submit your talk for: OpenSSF Community Day Europe by July 12

OpenSSF

Beyond the Software Bill of Materials (SBOM): Ensuring Integrity with Attestations – Event Recap

On March 5th, the SBOMit community hosted the Beyond the SBOM: Ensuring Integrity with Attestations event at The National Press Club in Washington, D.C. This event, co-located with OpenSSF Policy Summit DC, brought together industry leaders to address the limitations of single SBOMs and even signed SBOMs in ensuring software supply chain security. Attendees explored…

OpenSSF Newsletter – March 2025

Welcome to the March 2025 edition of the OpenSSF Newsletter! Here’s a roundup of the latest developments, key events, and upcoming opportunities in the Open Source Security community. TL;DR This...

What will my business need to do for the EU CRA?

The European Union’s Cyber Resilience Act (CRA) is a piece of legislation that covers all countries within the EU and the EAA and entered into force on 10th December 2024. It covers many types of devices and applications that are either sold or otherwise made commercially available in Europe and the intention behind it is…

Linux Foundation Research Reports Reveal Wide Spectrum for Cyber Resilience Act Readiness and Compliance

SAN FRANCISCO – March 18, 2024 – The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced the publication of two groundbreaking research reports, both in partnership with the Open Source Security Foundation (OpenSSF) and Linux Foundation Europe (LF Europe), that explore community-driven strategies to address open source security and the European Union’s Cyber Resilience Act (CRA). Authored by…

CNCF & OpenSSF Announce Open Source SecurityCon 2025

The Cloud Native Computing Foundation (CNCF) and the Open Source Security Foundation (OpenSSF) are thrilled to introduce Open Source SecurityCon 2025—a premier event focused on strengthening cloud-native and open source software security.