Blog

Mar 22

Improving Open Source Security through Collaboration: March 2023 OpenSSF Town Hall Highlights

By jbly Blog

Thanks to everyone who attended our recent Town Hall on March 16th where we gave an update on initiatives at the OpenSSF, shared presentations about various initiatives at the OpenSSF,…

Mar 20

Love0

Improving Supply Chain Security: IBM as a user and a contributor to Open Source Security Foundation Scorecard

By OpenSSF Blog, Case Studies, Guest Blog

Scorecard is becoming a key part of IBM’s review and curation of the open-source software in our products and services. IBM is committed to helping address the systemic security issues…

Mar 15

Love0

New SLSA++ Survey Reveals Real-World Developer Approaches to Software Supply Chain Security

By OpenSSF Blog, Guest Blog

Answering even basic questions about software supply chain security has been surprisingly hard. For instance, how widespread are the different practices associated with software supply chain security? And do software…

Mar 09

Love0

Draft Version 1.0 of SLSA Open for Comments

By OpenSSF Blog

Supply-chain Levels for Software Artifacts (SLSA, pronounced “salsa”) is an OpenSSF project that provides specifications for software supply chain security, established by industry consensus. SLSA’s framework is organized into a…

Mar 08

Love0

Why Open Source is Infrastructure, and Why it Matters

By OpenSSF Blog, Guest Blog

A new report by the Atlantic Council’s Cyber Statecraft Initiative helps draw light on the question on what "open source as infrastructure" really means, and why it matters: Avoiding the…

Mar 07

Love0

OpenSSF Membership Growth Signals Technical Communities’ Continued Commitment to Investing in Security

By OpenSSF Blog, Press Release

The Open Source Security Foundation (OpenSSF) welcomes eight new members from leading technology firms. The total number of OpenSSF members is currently over 100 and organization membership saw an 88%…

Mar 02

Love0

How to Make High-Quality SBOMs

By John Speed Meyers Blog, Guest Blog

The widespread use of software bill of materials (SBOMs) arguably depends on SBOM quality—that SBOMs contain sufficient and accurate information for the intended user to achieve their goals. But, until…

Feb 22

Love0

See you at the next OpenSSF Town Hall on March 16th

By jbly Blog

Are you interested in addressing open source software (OSS) security risk? Software Bill of Materials (SBOMs)? Diversity, Equity, and Inclusion (DEI) in OSS security? If so, plan to join us…

Feb 21

Love0

Open Source Security Meetup, Hong Kong, March 1, 2023

Inaugural OpenSSF Hong Kong Meetup on March 1

By OpenSSF Blog

We’re delighted to announce the first-ever Open Source Security Foundation (OpenSSF) Meetup in Hong Kong! Whether you’re a member of technical staff or a business executive, if you want to hear the…

Feb 17

Love0

Congratulations to Newly Elected OpenSSF Governing Board Members

By jbly Blog

We are excited to welcome newly elected Governing Board members of the OpenSSF: Tracy Miranda from Chainguard, Duane O'Brien from Indeed, and Stephen Chin from JFrog. The OpenSSF Governing Board…

Improving Open Source Security through Collaboration: March 2023 OpenSSF Town Hall Highlights

Improving Supply Chain Security: IBM as a user and a contributor to Open Source Security Foundation Scorecard

New SLSA++ Survey Reveals Real-World Developer Approaches to Software Supply Chain Security

Draft Version 1.0 of SLSA Open for Comments

Why Open Source is Infrastructure, and Why it Matters

OpenSSF Membership Growth Signals Technical Communities’ Continued Commitment to Investing in Security

How to Make High-Quality SBOMs

See you at the next OpenSSF Town Hall on March 16th

Inaugural OpenSSF Hong Kong Meetup on March 1

Congratulations to Newly Elected OpenSSF Governing Board Members

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox

Blog

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Subscribe to the OpenSSF Newsletter!

Get the latest announcements, event info, and the community news in your inbox