May 31, 2024 |
In Blog
The OSS Security Adventure: Exploring the Frontlines of OSS Security through SOSS Policy Summit, RSA Conference, and Japan Meetup
OpenSSF is making waves globally, with our footprint evident in discussions and events across continents. Join us on an "OSS Security Adventure" as we delve into our impactful presence at the SOSS Policy Summit in Brussels, the RSA Conference in San Francisco, and our engaging meetup in Tokyo. Read more.
May 30, 2024 |
In Blog
Beyond the OpenSSF: An Introduction to Other Security Efforts Across the Linux Foundation
The Open Source Security Foundation (OpenSSF)ās mission is to strengthen the open source software ecosystem through a collaborative initiative across industry. But did you know about the other initiatives focusing on strengthening open source security, happening across the Linux Foundation? In fact, one of the top priorities at the Linux… Read more.
May 29, 2024 |
In Blog
The Opportunity for DEI Participation in the Security Industry (And OpenSSF)
At Secure Open Source Software (SOSS) Community Day North America 2024, we held a panel discussion on DEI (Diversity, Equity and Inclusion) at Open Source Security Foundation (OpenSSF). In preparing for this discussion we had a lot of conversations and realized we each had diverse perspectives on what the needs… Read more.
May 24, 2024 |
Introducing Artifact AttestationsāNow in Public Beta
Thereās an increasing need across enterprises and the open source ecosystem to have a verifiable way to link software artifacts back to their source code and build instructions. And with more than 100 million developers building on GitHub, we want to ensure that developers have the tools needed to help… Read more.
May 22, 2024 |
In Blog
OpenSSF Joins Open Source Consortium To Define E.U. CRA Security Specifications
The Open Source Security Foundation (OpenSSF), a project of the Linux Foundation focused on improving the security of open source software, is proud to announce its collaboration with the Eclipse Foundation and a leading open source consortium to work on the European Unionās (E.U.) Cyber Resilience Act (CRA). This alliance… Read more.
May 20, 2024 |
Enhancing Open Source Security: Introducing Siren by OpenSSF
By Christopher āCRobā Robinson, Director of Security Communications, Intel Product Assurance and Security, Intel Corporation; and Bennett Pursell, Ecosystem Strategist, OpenSSF In the ever-evolving landscape of cybersecurity threats, collaboration and information sharing are paramount. Now, more than ever, the open source community needs a centralized platform to exchange threat intelligence… Read more.
May 17, 2024 |
Where Does Your Software (Really) Come From?
Software is a funny, profound thing: Each piece of it is an invisible machine, seemingly made of magic words, designed to run on the ultimate, universal machine. Itās not alive, but it has a lifecycle. It starts out as source codeājust text files sitting in a repository somewhereāand then later… Read more.
May 16, 2024 |
In Blog
Join Our Upcoming OpenSSF Tech Talk: Proactive Supply Chain Security with GUAC
Join our upcoming Tech Talk, "Proactive Supply Chain Security with GUAC," on June 6, 2024, at 10 AM PT/1 PM ET, as we discuss proactive vulnerability management and software supply chain security. Read more.
May 14, 2024 |
In Blog
Call for Proposals: Submit to Speak at SOSS Community Day Europe
Join us in Vienna, Austria, for the Secure Open Source Software (SOSS) Community Day Europe 2024, an enriching gathering where members from across the security and open source ecosystem converge to exchange ideas and advancements. Formerly known as OpenSSF Days, SOSS Community Days reflect our broader commitment to fortifying the… Read more.
May 13, 2024 |
In Blog
Unlock the Keys to Improved Software Security
This post summarizes key steps that software developers can take to improve software security. It is a text version of a talk given at Open Source Summit North America (OSS NA) 2024. Read more.