Skip to main content
OpenSSF Champions a More Secure Future in Collaboration with Public Sector

Feb 2, 2024 | OpenSSF

In Blog

OpenSSF Champions a More Secure Future in Collaboration with Public Sector

As the Open Source Security Foundation (OpenSSF), our core mission is to safeguard the open source software (OSS) ecosystem and make it more secure. In 2023, we embraced a significant opportunity to further this mission by working with the US government, including its Open-Source Software Security Initiative (OS3I). Read more.
MaintainerSecurity

Jan 31, 2024 | OpenSSF

In Blog

Maintainer Motivations, Challenges, and Best Practices on Open Source Software Security

The Linux Foundation’s recent research report, titled Maintainer Perspectives on Open Source Software Security, provides valuable insights into the views and practices of OSS maintainers and core contributors. Insights were derived from survey data, and the report features a foreword from Cisco’s Stephen Augustus, a maintainer, contributor, and one of open… Read more.
OSS Security Sessions & FOSDEM Survival Guide

Jan 24, 2024 | OpenSSF

In Blog

OSS Security Sessions & FOSDEM Survival Guide

Are you going to FOSDEM -  the biggest open source event in Europe? It can be very overwhelming for anyone new to the event. If you are interested in open source security and policy, there are be some events and talks that you do not want to miss. Here is… Read more.
gittuf

Jan 18, 2024 | OpenSSF

In Blog

Introducing gittuf: A Security Layer for Git Repositories

We’re pleased to announce that gittuf, a security layer for Git repositories, has joined the OpenSSF as a sandbox project. The project is housed under the Supply Chain Integrity Working Group. Read more.
SOSS Community Day NA CFP

Jan 11, 2024 | OpenSSF

In Blog

Submit to Speak at SOSS Community Day North America 2024

We are thrilled to announce that the OpenSSF is hosting SOSS Community Day North America 2024, on April 15, 2024 in Seattle, Washington. This is a one day event co-located with Open Source Summit North America dedicated to Securing Open Source Software (SOSS). The call for proposal (CFP) to speak… Read more.

Jan 4, 2024 | OpenSSF

In Blog

OpenSSF Election Results for Technical Advisory Council and Representatives to the Governing Board

We are excited to start 2024 by announcing several key election results. OpenSSF Associate Members and General Members and the Community elected their representatives to the Governing Board and we elected a new and expanded Technical Advisory Council (TAC).  Read more.
OpenSSF Day Japan Image

Dec 21, 2023 | OpenSSF

In Blog

Recap of OpenSSF Day Japan

As 2023 drew to a close, OpenSSF convened the open source community in Tokyo, Japan, to delve into discussions surrounding the challenges, overarching solutions, ongoing initiatives, and triumphs in fortifying the open source software (OSS) supply chain. Alongside dedicated OpenSSF contributors and thought leaders, we embarked on an in-depth exploration… Read more.
OpenVEX and Open Source Vulnerability Scanners: How the Dynamic Duo Improves Vulnerability Management

Dec 20, 2023 | OpenSSF

OpenVEX and Open Source Vulnerability Scanners: How the Dynamic Duo Improves Vulnerability Management

Open source vulnerability scanners now increasingly support OpenVEX, helping open source users reduce the pain of managing vulnerabilities and the burden of false positives. These new integrations with OpenVEX can provide rich context on vulnerabilities in a piece of software, ensuring better scanner results such as a reduced false positive… Read more.

Dec 19, 2023 | OpenSSF

In Blog

Deconstructing the AI Cyber Challenge (AIxCC)

The AI Cyber Challenge (AIxCC) is structured around two tracks and multiple competitions and events. For a brief overview of AIxCC, watch the video: AI Cyber Challenge Streaming Event. Check out the announcements and challenge information here. Read more.
OpenSSF-2024-prediction

Dec 19, 2023 | OpenSSF

In Blog

What’s Next in Open Source Security? 

As we step into the year 2024, the OpenSSF envisions a year marked by transformative growth, heightened resilience, and new opportunities for individuals and organizations contributing to the flourishing ecosystem of open source software. While our recently released 2023 Annual Report highlighted some accomplishments of the OpenSSF, for a touch… Read more.