OpenSSF

Feb 06

Post-Quantum Cryptography Alliance Launch

By OpenSSF Blog

Today the Linux Foundation announced the launch of the Post-Quantum Cryptography Alliance (PQCA), an open and collaborative initiative to drive the advancement and adoption of post-quantum cryptography. The OpenSSF looks…

Feb 05

Love0

CVE-2023-6246 Root Access Vulnerability in glibc

By OpenSSF Blog

The CVE-2023-6246 vulnerability in glibc can allow an attacker to escalate their local unprivileged access to the full root privilege level. CVEs like this highlight the significance of the initiatives…

Feb 02

Love0

OpenSSF Champions a More Secure Future in Collaboration with Public Sector

By OpenSSF Blog

As the Open Source Security Foundation (OpenSSF), our core mission is to safeguard the open source software (OSS) ecosystem and make it more secure. In 2023, we embraced a significant…

Jan 31

Love0

Maintainer Motivations, Challenges, and Best Practices on Open Source Software Security

By OpenSSF Blog

The Linux Foundation’s recent research report, titled Maintainer Perspectives on Open Source Software Security, provides valuable insights into the views and practices of OSS maintainers and core contributors. Insights were derived…

Jan 24

Love0

OSS Security Sessions & FOSDEM Survival Guide

By OpenSSF Blog

Are you going to FOSDEM - the biggest open source event in Europe? It can be very overwhelming for anyone new to the event. If you are interested in open…

Jan 18

Love0

Introducing gittuf: A Security Layer for Git Repositories

By OpenSSF Blog

We’re pleased to announce that gittuf, a security layer for Git repositories, has joined the OpenSSF as a sandbox project. The project is housed under the Supply Chain Integrity Working…

Jan 11

Love0

Submit to Speak at SOSS Community Day North America 2024

By OpenSSF Blog

We are thrilled to announce that the OpenSSF is hosting SOSS Community Day North America 2024, on April 15, 2024 in Seattle, Washington. This is a one day event co-located…

Jan 04

Love0

OpenSSF Election Results for Technical Advisory Council and Representatives to the Governing Board

By OpenSSF Blog

We are excited to start 2024 by announcing several key election results. OpenSSF Associate Members and General Members and the Community elected their representatives to the Governing Board and we…

Dec 21

Love0

Recap of OpenSSF Day Japan

By OpenSSF Blog

As 2023 drew to a close, OpenSSF convened the open source community in Tokyo, Japan, to delve into discussions surrounding the challenges, overarching solutions, ongoing initiatives, and triumphs in fortifying…

Dec 20

Love0

OpenVEX and Open Source Vulnerability Scanners: How the Dynamic Duo Improves Vulnerability Management

By OpenSSF Blog, Guest Blog

Open source vulnerability scanners now increasingly support OpenVEX, helping open source users reduce the pain of managing vulnerabilities and the burden of false positives. These new integrations with OpenVEX can…

Post-Quantum Cryptography Alliance Launch

CVE-2023-6246 Root Access Vulnerability in glibc

OpenSSF Champions a More Secure Future in Collaboration with Public Sector

Maintainer Motivations, Challenges, and Best Practices on Open Source Software Security

OSS Security Sessions & FOSDEM Survival Guide

Introducing gittuf: A Security Layer for Git Repositories

Submit to Speak at SOSS Community Day North America 2024

OpenSSF Election Results for Technical Advisory Council and Representatives to the Governing Board

Recap of OpenSSF Day Japan

OpenVEX and Open Source Vulnerability Scanners: How the Dynamic Duo Improves Vulnerability Management

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox