Skip to main content

Jun 18, 2024 | OpenSSF

Open Source Security Foundation Launches “What’s in the SOSS?” Podcast

The Open Source Security Foundation (OpenSSF) has launched a new podcast titled “What’s in the SOSS?” With biweekly episodes, the series explores the world of secure open source software, delivering insights from industry leaders and innovators.  Read more.
July in NYC: Join Us at the United Nations’ (UN’s) OSPOs for Good 2024 Conference & the “What’s Next for Open Source?” Event

Jun 17, 2024 | OpenSSF

In Blog

July in NYC: Join Us at the United Nations’ (UN’s) OSPOs for Good 2024 Conference & the “What’s Next for Open Source?” Event

OpenSSF is excited to participate in two major events happening in July in New York City (NYC) that are dedicated to promoting open source as a tool for global cooperation and sustainable development. These events will bring together a diverse group of global open source leaders, policymakers, and innovators. Read more.
GUACTechTalkHighlight

Jun 14, 2024 | OpenSSF

In Blog

OpenSSF GUAC Tech Talk Highlights

Last week, the community convened for the OpenSSF Tech Talk, spotlighting GUAC (Graph for Understanding Artifact Composition). Read more.
UbuntuSecurityNoticesNowAvailableinOSV

Jun 11, 2024 | OpenSSF

Ubuntu Security Notices Now Available in OSV

In today's rapidly evolving open source ecosystem, managing vulnerabilities efficiently is crucial. That's why we're excited to share that Canonical is now issuing Ubuntu Security Notices (USNs) in the open source OSV format. This collaboration aims to simplify vulnerability management and enhance security for our users. Read more.
Stacklok Case Study

Jun 4, 2024 | OpenSSF

OpenSSF Case Study: Enhancing Open Source Security with Sigstore at Stacklok

Stacklok was founded in 2023 by Craig McLuckie (co-creator of Kubernetes) and Luke Hinds (creator of the OpenSSF project Sigstore), with the goal of helping developers produce and consume open source software more safely. Read more.
TIFunding

Jun 3, 2024 | OpenSSF

In Blog

Final Call: Submit your Technical Initiatives (TI) Funding Request by June 7th, 2024

We are excited to announce that another round of Technical Initiative (TI) funding is coming to a close with the mid-June window mentioned in the blog: How OpenSSF Technical Initiatives Can Receive Strategic Funding. Read more.
SecurityAdventure

May 31, 2024 | OpenSSF

In Blog

The OSS Security Adventure: Exploring the Frontlines of OSS Security through SOSS Policy Summit, RSA Conference, and Japan Meetup

OpenSSF is making waves globally, with our footprint evident in discussions and events across continents. Join us on an "OSS Security Adventure" as we delve into our impactful presence at the SOSS Policy Summit in Brussels, the RSA Conference in San Francisco, and our engaging meetup in Tokyo. Read more.

May 30, 2024 | OpenSSF

In Blog

Beyond the OpenSSF: An Introduction to Other Security Efforts Across the Linux Foundation

The Open Source Security Foundation (OpenSSF)’s mission is to strengthen the open source software ecosystem through a collaborative initiative across industry. But did you know about the other initiatives focusing on strengthening open source security, happening across the Linux Foundation? In fact, one of the top priorities at the Linux… Read more.

May 29, 2024 | OpenSSF

In Blog

The Opportunity for DEI Participation in the Security Industry (And OpenSSF)

At Secure Open Source Software (SOSS) Community Day North America 2024, we held a panel discussion on DEI (Diversity, Equity and Inclusion) at Open Source Security Foundation (OpenSSF). In preparing for this discussion we had a lot of conversations and realized we each had diverse perspectives on what the needs… Read more.
Introducing_Artifact_Attestations

May 24, 2024 | OpenSSF

Introducing Artifact Attestations—Now in Public Beta

There’s an increasing need across enterprises and the open source ecosystem to have a verifiable way to link software artifacts back to their source code and build instructions. And with more than 100 million developers building on GitHub, we want to ensure that developers have the tools needed to help… Read more.