Blog

📣 Submit your proposal: OpenSSF Community Days: Japan | India | Europe

Feb 21

Submit to Speak at SOSS Fusion 2024

By OpenSSF Blog

The Secure Open Source Software (SOSS) Fusion Conference by the OpenSSF is a leading event for open source professionals, uniting diverse experts from software developers to CISOs and tech pioneers.…

Feb 20

Love0

OpenSSF Responds to US CISA RFI on Cybersecurity Risk and Secure by Design Software

By aliu Blog

OpenSSF has submitted a response to the Request For Information (RFI) on Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Secure by Design Software issued by the US…

Feb 16

Love0

Scaling Up Supply Chain Security: Implementing Sigstore for Seamless Container Image Signing

By OpenSSF Blog, Case Studies, Guest Blog

In this post, we will explore how Yahoo leverages Sigstore, in concert with Athenz, an open source platform for managing X.509 certificates, as an internal Certificate Authority, to sign and verify…

Feb 16

Love0

Alpha-Omega 2023 Annual Report

By aliu Alpha-Omega, Blog

In 2023, Alpha-Omega provided ten grants to eight organizations totaling over $2.8 million dollars, with an average grant size of just over $350,000. In partnership with OpenSSF, Alpha-Omega's mission is…

Feb 14

Love0

Linux Kernel Achieves CVE Numbering Authority Status

By OpenSSF Blog

The Linux kernel has achieved a significant milestone in open source software security. It has been authorized as a CVE Numbering Authority (CNA) by the CVE Program. Being a CNA…

Feb 13

Love0

Announcing the First Ever SOSS Fusion Conference: How You Can Get Involved

By OpenSSF Blog

We are thrilled to announce the first event Secure Open Source Software (SOSS) Fusion Conference 2024, a two-day conference hosted by the OpenSSF in Atlanta, GA. Set to take place…

Feb 12

Love0

OpenSSF Participates in U.S. AI Safety Institute Consortium

OpenSSF Participates in Department of Commerce Consortium Dedicated to AI Safety

By OpenSSF AI, Blog

The Open Source Security Foundation (OpenSSF) is participating in the Biden-Harris Administration’s first-ever Consortium Dedicated to AI Safety, led by the US Department of Commerce. We join over 200 leading…

Feb 08

Love0

OpenSSF Securing Software Repositories Working Group Releases Principles for Package Repository Security

By OpenSSF Blog

Today, the OpenSSF Securing Software Repositories Working Group released v0.1 of Principles for Package Repository Security, a framework for package repositories to assess their current security capabilities and to help…

Feb 06

Love0

Time is of the Essence to Mitigate Vulnerabilities like Leaky Vessels

By OpenSSF Blog

Time is of the essence to mitigate vulnerabilities like the recent Leaky Vessels in order to reduce the chance of the vulnerabilities being exploited by attackers. As noted in Leaky…

Feb 06

Love0

Post-Quantum Cryptography Alliance Launch

By OpenSSF Blog

Today the Linux Foundation announced the launch of the Post-Quantum Cryptography Alliance (PQCA), an open and collaborative initiative to drive the advancement and adoption of post-quantum cryptography. The OpenSSF looks…

Copyright © 2024 The Linux Foundation® . All rights reserved. The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our Trademark Usage page. Linux is a registered trademark of Linus Torvalds. Privacy Policy and Terms of Use.

Submit to Speak at SOSS Fusion 2024

OpenSSF Responds to US CISA RFI on Cybersecurity Risk and Secure by Design Software

Scaling Up Supply Chain Security: Implementing Sigstore for Seamless Container Image Signing

Alpha-Omega 2023 Annual Report

Linux Kernel Achieves CVE Numbering Authority Status

Announcing the First Ever SOSS Fusion Conference: How You Can Get Involved

OpenSSF Participates in Department of Commerce Consortium Dedicated to AI Safety

OpenSSF Securing Software Repositories Working Group Releases Principles for Package Repository Security

Time is of the Essence to Mitigate Vulnerabilities like Leaky Vessels

Post-Quantum Cryptography Alliance Launch

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox

Blog

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Subscribe to the OpenSSF Newsletter!

Get the latest announcements, event info, and the community news in your inbox