🎙️ Submit your talk for: OpenSSF Community Day Europe by July 12

OpenSSF

The Linux Foundation and Open Source Software Security Foundation (OpenSSF) Gather Japanese Industry and Government Leaders for Open Source Software Security Summit Japan

The Linux Foundation and the Open Source Software Security Foundation (OpenSSF) backed by the Ministry of Economy, Trade and Industry, Today convene cybersecurity experts from Japanese companies, government agencies, and research institutes at the Open Source Security Summit Japan to share open source software (OSS) security issues and how to accelerate improvements. The meeting will…

Take Survey to Help Improve Software Supply Chain Integrity Practices

A new survey by Chainguard in collaboration with the Eclipse Foundation, the Rust Foundation and OpenSSF aims to understand the software supply chain integrity practices of a broad range of software professionals. The goal of this survey is to learn more about how software professionals use and view key software supply chain integrity practices. 

Join Us at the First OpenSSF Open Source Security Meetup in India

I’m very excited to present at the first ever Open Source Security Foundation (OpenSSF) meetup in India, next Thursday, July 28 in Bangalore, hosted by OpenSSF Premier Member, Wipro. Companies and governments are increasingly recognizing the need to prioritize their software supply chains and the role open source software (OSS) plays in them. Given the increasing…

State of Open Source Security 2022 from Snyk & the Linux Foundation

Snyk has teamed up with the Linux Foundation to research and report on security concerns in the open source ecosystem. The 2022 State of Open Source Security report shows that many organizations still don’t have good policies and governance around open source security in spite of the popularity of open source packages.

Introducing Fuzz Introspector, an OpenSSF Tool to Improve Fuzzing Coverage

We are excited to announce an initial release of Fuzz Introspector, a collaborative effort from OpenSSF members, that provides actionable insights for developers to identify fuzzing coverage blockers by analyzing functions, static call graphs, and runtime coverage information. Resolving these blockers will help unlock improved fuzzing coverage, resulting in more vulnerability discoveries and greater confidence…