Secure Open Source Software (SOSS) Community Day EU and Open Source Summit Europe 2024 are just around the corner in Vienna, Austria! Join fellow open source enthusiasts from September 16 - 19, 2024, as they come together to connect, share knowledge, and push the boundaries of innovation in the open source world.Â
Software security is a top priority, and understanding the components that make up your software is crucial. Software Bill of Materials (SBOMs) play a vital role in achieving this by providing a detailed list of these components and their relationships.
The Linux Foundation's Open Source Security Foundation (OpenSSF) Secure Software Development Education 2024 Survey offers crucial insights that are particularly relevant to the financial services industry, including FINOS members such as sell-side banks, buy-side firms, and wealth managers. As these organizations increasingly rely on software to drive operations, the emphasis on secure software development becomes critical.
Competitors’ Cyber Reasoning Systems proved up to the AIxCC Challenge at DEF CON 32 this month, with seven teams advancing to the finals of the two-year competition aimed at finding and fixing vulnerabilities in critical software projects.
This blog explores how Guidewire Cloud Platform is using and collaborating with GUAC.
Software security has continued to grow in importance. The Linux Foundation has undertaken various initiatives around open source software security, such as the Open Source Security Foundation (OpenSSF)—–a full list of initiatives is available on LF Security.
GUAC v0.8.0Â is now available. This release brings support for license information, node deletion, and many other improvements.
Join us for SigstoreCon: Supply Chain Day! Co-located with Kubecon NA 2024 in Salt Lake City, attendees will learn about simplifying signing and verification for digital artifacts using Sigstore, as well as related software supply chain efforts such as SLSA, The Update Framework, binary transparency, and more! CFP deadline is September 13.
GitHub Actions are commonly used to automate processes in repositories, by running CI (continuous integration) tests on pull requests for example. It can also be used to make a package release process more secure just by making it automated. But, it is important to be careful to ensure that they are safe and do not…
We are excited to announce that the OpenSSF is hosting Security of Open Source Software (SOSS) Community Day Japan 2024, scheduled for Wednesday, October 30, 2024. This one-day event will take place in Tokyo, Japan, and the call for proposals (CFP) is now open.
