Skip to main content

OpenSSF Blog

Guest blog opportunities are open to members, with limited exceptions for active contributors and thought leaders. Share your insights on open source security with our community.

RedHat'sCollaborationwithOpenSSF

Nov 1, 2024 | OpenSSF

Red Hat’s Collaboration with the OpenSSF and OSV.dev Yields Results: Red Hat Security Data Now Available in the OSV Format

OSV is an open format for describing software vulnerabilities. It provides security researchers, vendors, and consumers with an easy to understand format for exchanging vulnerability information. OSV.dev is a database that hosts and aggregates OSV data. Read more.

Oct 29, 2024 | OpenSSF

OpenSSF Welcomes New Members and Introduces New Initiatives at SOSS Community Day Japan

Growing Member Base and New Initiatives Continue to Advance Open Source Software Security TOKYO, JAPAN – October 30, 2024 – The Open Source Security Foundation (OpenSSF), a global cross-industry initiative of the Linux Foundation that focuses on sustainably securing open source software (OSS), is excited to announce new members from… Read more.

Oct 29, 2024 | abringaze

OpenSSF Expands Secure Development Course with Interactive Labs

TheĀ Open Source Security FoundationĀ (OpenSSF) today announced an expansion of itsĀ free course ā€œDeveloping Secure Softwareā€ (LFD121). The course now features interactive learning scenarios to better equip developers to build software that resists modern cyberattacks. Read more.

Oct 28, 2024 | OpenSSF

OpenSSF Adds Minder as a Sandbox Project to Simplify the Integration and Use of Open Source Security Tools

Today, I’m excited to announce that Stacklok is contributing our Minder open source project to the Open Source Security Foundation (OpenSSF). Minder makes it simpler for developers and security teams to adopt a policy-based approach to open source software security; it reduces noise, alerts to risk only when necessary, auto-remediates… Read more.
CybersecurityMonth

Oct 25, 2024 | OpenSSF

In Blog

Cybersecurity Awareness Month 2024: Stay Secure, Stay Informed

October is Cybersecurity Awareness Month! Proclaimed since 2004, October is the month dedicated to raising awareness about cybersecurity and taking simple steps to keep individuals and organizations safe. This year, let’s focus on collective action across different sectors. This post explores more about what actions different stakeholders can take in… Read more.

Oct 24, 2024 | OpenSSF

Case Study: Kusari’s Implementation of OpenSSF Tools and Services

Challenge For many years, the software supply chain has suffered from a lack of transparency and inefficient, unsustainable security management methods such as spreadsheets, emails, and word of mouth. The severity of these challenges was highlighted during incidents like Log4Shell, where the limitations of these approaches became evident — organizations… Read more.
SOSS-Fusion-2024-OpenSSF-SOSS-Fusion-Conference-Kicks-off-with-Talks-from-Google-and-Cisco-Executives-

Oct 22, 2024 | OpenSSF

OpenSSF SOSS Fusion Conference Kicks off with Talks from Google and Cisco Executives

Event aims to create a more secure open source future by covering high-priority topics and offering workshops and industry expert insights WASHINGTON — October 22, 2024 — The Open Source Security Foundation (OpenSSF) announced the opening of the Secure Open Source Software (SOSS) Fusion Conference in North America in Atlanta,… Read more.
DeveloperRelationsTheHumanConnectionDriving OpenSourceSecurity

Oct 17, 2024 | OpenSSF

In Blog

Developer Relations: The Human Connection Driving Open Source Security

Open source security isn’t just about technology—it’s about the people behind it. Developer Relations (DevRel) connects developers, maintainers, and contributors, ensuring that they have the tools and support to make open source software more secure and resilient. Read more.
10-10TechTalk_Thumbnail

Oct 16, 2024 | OpenSSF

In Blog

OpenSSF Education Tech Talk Highlights & Future Opportunities

Last week, OpenSSF hosted a virtual Tech Talk titled Jumpstart Your Journey: Mastering OSS Security Development with the Linux Foundation Education. This session was designed for aspiring open source professionals and newcomers eager to dive into the world of open source software (OSS) security.Ā  Read more.
SOSSCommunity24EU

Oct 2, 2024 | OpenSSF

In Blog

Recap on SOSS Community Day EU

On September 19, the OpenSSF community gathered in Vienna for SOSS Community Day EU, held alongside Open Source Summit EU. Each summit and community day is a celebration of open source excellence, showcasing the collective efforts of passionate individuals committed to making the world a safer place. We extend a… Read more.