Blog

📣 Submit your proposal: OpenSSF Community Days: Japan | India | Europe

Jul 17

Love0

The Linux Foundation and OpenSSF Release Report on the State of Education in Secure Software Development

By OpenSSF Blog, Press Release

Findings show nearly one-third of industry professionals are not familiar with secure software development practices

Jul 10

Love0

AI Cyber Challenge (AIxCC) and the Needle Linux Kernel Vulnerability1

AI Cyber Challenge (AIxCC) and the Needle Linux Kernel Vulnerability – Part 1

By OpenSSF Blog

Could artificial intelligence (AI) practically help find and fix vulnerabilities in a scalable way? We don’t know for certain, but there’s hope that it could. In this article, we’ll look…

Jul 08

Love0

Learn How To Develop Secure Software!

By OpenSSF Blog

The Open Source Security Foundation (OpenSSF), in partnership with Linux Foundation Training & Certification, offers a free online training course, Developing Secure Software (LFD121). Those who complete the course and…

Jul 05

Love0

Cover_Secure_Software_Development_Education_2024_Survey

Why are Organizations Struggling to Implement Secure Software Development?

By OpenSSF Blog

The Secure Software Development Education 2024 Survey, conducted through a partnership between the Open Source Security Foundation (OpenSSF) and Linux Foundation (LF) Research, examines the secure software development education needs of…

Jul 03

Love0

Chainguard Enhances Security With OSV Advisory Feed

By OpenSSF Blog, Guest Blog

In today's rapidly evolving open source ecosystem, managing vulnerabilities efficiently is crucial. To address this,Chainguard is now publishing its security advisory feed in the Open Source Vulnerabilities (OSV) format. This…

Jun 28

Love0

Improving OpenSSF Scorecard Scores: StepSecurity Automation for Four Key Checks

By OpenSSF Blog, Guest Blog

Implementing security best practices is essential for open source maintainers to ensure their projects are secure and free from vulnerabilities. However, many maintainers find this task complex and time-consuming when…

Jun 26

Love0

A Deep Dive into SBOMit and Attestations

By OpenSSF Blog

December 2023 saw the launch of SBOMit, a project that helps enhance the reliability and integrity of SBOMs (Software Bills of Materials). It does so by including, along with SBOMs,…

Jun 21

Love0

An Open Source Approach to Threat Mitigation in AWS

By OpenSSF Blog, Guest Blog

The security of cloud environments is a top priority for organisations worldwide. According to research by Omdia, supporting cloud and digital transformation projects is one of the top three priorities…

Jun 18

Love0

Know Your Regular Expressions: Securing Input Validation Across Languages

By OpenSSF Blog

The Open Source Security Foundation (OpenSSF) Best Practices Working Group (WG) has just released a short guide, Correctly Using Regular Expressions for Secure Input Validation! Here’s why it’s important.

Jun 18

Love0

Open Source Security Foundation Launches “What’s in the SOSS?” Podcast

By OpenSSF Blog, Press Release

The Open Source Security Foundation (OpenSSF) has launched a new podcast titled “What’s in the SOSS?” With biweekly episodes, the series explores the world of secure open source software, delivering…

Copyright © 2024 The Linux Foundation® . All rights reserved. The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our Trademark Usage page. Linux is a registered trademark of Linus Torvalds. Privacy Policy and Terms of Use.

The Linux Foundation and OpenSSF Release Report on the State of Education in Secure Software Development

AI Cyber Challenge (AIxCC) and the Needle Linux Kernel Vulnerability – Part 1

Learn How To Develop Secure Software!

Why are Organizations Struggling to Implement Secure Software Development?

Chainguard Enhances Security With OSV Advisory Feed

Improving OpenSSF Scorecard Scores: StepSecurity Automation for Four Key Checks

A Deep Dive into SBOMit and Attestations

An Open Source Approach to Threat Mitigation in AWS

Know Your Regular Expressions: Securing Input Validation Across Languages

Open Source Security Foundation Launches “What’s in the SOSS?” Podcast

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox

Blog

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Subscribe to the OpenSSF Newsletter!

Get the latest announcements, event info, and the community news in your inbox