BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Open Source Security Foundation - ECPv6.15.20//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-WR-CALNAME:Open Source Security Foundation
X-ORIGINAL-URL:https://openssf.org
X-WR-CALDESC:Events for Open Source Security Foundation
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:Asia/Kolkata
BEGIN:STANDARD
TZOFFSETFROM:+0530
TZOFFSETTO:+0530
TZNAME:IST
DTSTART:20230101T000000
END:STANDARD
END:VTIMEZONE
BEGIN:VTIMEZONE
TZID:UTC
BEGIN:STANDARD
TZOFFSETFROM:+0000
TZOFFSETTO:+0000
TZNAME:UTC
DTSTART:20230101T000000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20260409T180000
DTEND;TZID=Asia/Kolkata:20260409T190000
DTSTAMP:20260508T073853
CREATED:20260403T151238Z
LAST-MODIFIED:20260408T065506Z
UID:10000107-1775757600-1775761200@openssf.org
SUMMARY:Handing Over The Keys to Your Kingdom: AI-Driven Security Woes
DESCRIPTION:The current security landscape reveals a dangerous paradox: the very tools we trust to secure our code—AI agents and DevSecOps utilities—possess the broadest permissions but the weakest oversight. We are currently witnessing a “credential-drift” crisis where automated tools are becoming the primary vectors for supply chain contagion. \nTo prevent the next cascade\, we must move away from reactive patching and toward a Closed-Loop Integrity System. \nThe last 14 days have highlighted a systemic failure in how we manage “privileged automation.” Trivy\, Axios\, LiteLLM\, OpenAI Codex\, and Claude Code have all fallen prey to various supply chain attacks. \nWe are handing the “keys to the kingdom” to AI agents and automated scanners that are\, by nature\, high-value targets. If you aren’t monitoring your security tools with the same intensity you use for your production databases\, you aren’t running a secure shop—you’re just waiting for the next cascade. \nJoin this talk to learn more about how you can prevent supply chain security failures in your AI world. \n  \n \nGuest: Himanshu Sangshetti \nDate: Thursday\, 9th April 2025 \nTime: 6 PM IST
URL:https://openssf.org/event/handing-over-the-keys-to-your-kingdom/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20260319T140000
DTEND;TZID=Asia/Kolkata:20260319T150000
DTSTAMP:20260508T073853
CREATED:20260305T091826Z
LAST-MODIFIED:20260309T125439Z
UID:10000092-1773928800-1773932400@openssf.org
SUMMARY:Security In An Open World
DESCRIPTION:Join us on March 19th 2026 for a chat with Abhishek Chauhan\, who leads Sonatype India. \nMillions of software developers trust Sonatype to keep their open source codebases\, libraries\, and dependencies safe. This is one of the oldest companies securing the software supply chain. \nIndia is home to one of the world’s fastest-growing developer communities and is rapidly emerging as a key market for AI-driven software development. The demand for building\, consuming\, and securing code is reaching unprecedented levels as organizations accelerate their adoption of modern technologies. \nAt the same time\, the country continues to produce exceptional engineering talent\, making it a global hub for innovation and technical expertise. Given these factors\, India presents a compelling opportunity for Sonatype to deepen its innovation and talent footprint. \nAnother important topic is the Security Slam event! We will spend a little time talking about what the event is\, what Sonatype aims to achieve\, and how best you can participate in this. \nGuest: Abhishek Chauhan\nSenior Director\, Sonatype \nDate: 19th March 2025\nTime: 2 pm to 3 pm IST
URL:https://openssf.org/event/security-in-an-open-world/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=UTC:20260311T140000
DTEND;TZID=UTC:20260311T150000
DTSTAMP:20260508T073853
CREATED:20260305T143059Z
LAST-MODIFIED:20260305T143650Z
UID:10000093-1773237600-1773241200@openssf.org
SUMMARY:The Invisible Threat: Secure & Sovereign Digital Backbone
DESCRIPTION:As India’s critical infrastructure shifts from a hardware-heavy setup to “softwarized” environments\, our national security now depends on the integrity of the software supply chain. Join us for an in-depth session with Arpit Tripathi as we move beyond traditional cybersecurity tropes to discuss why the real battlefield isn’t the radio—it’s the interface. \nWe will explore how modern\, cloud-native telecom systems are vulnerable not just to hackers\, but to fundamental modeling failures in Service-Based Interfaces (SBI) and API trust assumptions. \nKey Discussion Points\n\nThe Shift to Softwarization: Why software supply chain security is now a geopolitical imperative.\nBeyond the Radio: Understanding the new attack surfaces in API-driven\, interconnected systems.\nPolicy & Standards: Insights into Standard-Essential Patent (SEP) governance and the role of the TSDSI in India.\nProactive Defense: Why designing security at the interface level is the only way to move from “reacting” to “preventing.”\n\nMeet the Speaker\nArpit Tripathi is a Telecom Engineer and Research Scholar at the Networked and Wireless Systems Lab (IIT Hyderabad). With a unique background spanning both deep technical engineering and public policy\, Arpit’s work focuses on the intersection of open-source security\, telecom infrastructure\, and the doctrinal analysis of tech policy governance in India. \n  \nDate: 11th March 2026 \nTime: 2 PM IST \n 
URL:https://openssf.org/event/india-tech-and-public-policy-critical-infrastructure/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20260305T140000
DTEND;TZID=Asia/Kolkata:20260305T150000
DTSTAMP:20260508T073853
CREATED:20260223T151357Z
LAST-MODIFIED:20260223T160826Z
UID:10000090-1772719200-1772722800@openssf.org
SUMMARY:Don’t Gawk. Use GUAC Instead.
DESCRIPTION:The definition of “gawk” is “to stare stupidly\, rudely\, or with amazement\, often with an open mouth”. This perfectly captures the reaction that software engineers have when they encounter supply chain security issues. \nLack of transparency is a huge blindside when working with open source tools. This blind spot could blow up into a project black hole — invisible\, resource depleting\, destructive —  if not handled correctly. How do we build situational awareness from this position of incognizance? \nEnter GUAC! A project built by the community and devised to solve the problem of not knowing your software composition. \nWhether you’re an enterprise or just an enterprising indie dev\, this session has something for you. Learn how to make use of GUAC for improving your supply chain security posture. Find out how teams are benefitting from better knowledge of the OSS components in their toolchain. \nGuest Bio \nShreyas Pandya \nStaff software engineer @Guidewire software \nShreyas Pandya is a results-oriented Software Engineer and leader with deep expertise in web application development. He has built web services (microservices)\, APIs\, and has handled scalability\, security\, and cloud infrastructure. Shreyas possesses  experience in working within agile environments and fast-paced startup teams. He currently serves as a Platform Engineer at Guidewire\, where he leads a team of engineers in the delivery of various products. \nDate: 5th March 2026 \nTime: 2 pm IST
URL:https://openssf.org/event/dont-gawk-use-guac/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20250804
DTEND;VALUE=DATE:20250805
DTSTAMP:20260508T073853
CREATED:20250502T131220Z
LAST-MODIFIED:20250728T170524Z
UID:10000066-1754265600-1754351999@openssf.org
SUMMARY:OpenSSF Community Day India
DESCRIPTION:Hosting: Join us for the OpenSSF Community Day India this summer! Co-located with KubeCon + CloudNativeCon India\, this event will bring the open source community together in Hyderabad\, India. \nAbout OpenSSF Community Days: OpenSSF Community Days bring together a vibrant community from across the Security and Open Source ecosystems to share ideas and progress on capabilities that make it easier to sustainably secure the development\, maintenance\, and consumption of the software on which we all depend. These events\, held regionally and co-located with KubeCon or Open Source Summits\, offer an opportunity to engage with the brightest minds in security for a day of collaboration and innovation in software security best practices. As a home for tools\, standards\, and education\, OpenSSF provides attendees the chance to explore these resources\, share their experiences\, and contribute to a safer and more secure digital world.
URL:https://openssf.org/event/openssf-community-day-india-2/
CATEGORIES:India Initiative,OpenSSF Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2025/05/OpenSSF-Community-Day-India-2025-Session-Cards.png
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20250614T140000
DTEND;TZID=Asia/Kolkata:20250614T150000
DTSTAMP:20260508T073853
CREATED:20250516T235818Z
LAST-MODIFIED:20250516T235818Z
UID:10000071-1749909600-1749913200@openssf.org
SUMMARY:Open Source LLM Security
DESCRIPTION:As Large Language Models (LLMs) become increasingly prevalent\, the security of their open-source variants presents unique and critical challenges. While offering flexibility and accessibility\, the open nature of these models can expose them to specific vulnerabilities and attack vectors. This talk will explore the emerging security landscape surrounding open-source LLMs\, discussing risks such as data poisoning\, model inference attacks\, and supply chain compromises. Understanding these threats is vital for developers and users to leverage LLMs safely and effectively. We will delve into key security considerations and potential mitigation strategies for building and deploying secure open-source LLM applications.
URL:https://openssf.org/event/open-source-llm-security/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20250603T140000
DTEND;TZID=Asia/Kolkata:20250603T150000
DTSTAMP:20260508T073853
CREATED:20250516T230809Z
LAST-MODIFIED:20250516T230809Z
UID:10000070-1748959200-1748962800@openssf.org
SUMMARY:Zero Trust Network Access
DESCRIPTION:Presented by Tushar Anand\, an experienced Security Engineer specializing in cloud security\, application security\, and compliance\, with extensive skills in pentesting and risk management. \nIn today’s evolving threat landscape\, traditional perimeter-based security is no longer sufficient. This talk\, “Zero Trust Network Access\,” will delve into the fundamental principles of Zero Trust and its critical role in modern network security. We will explore how assuming “never trust\, always verify” can drastically enhance your organization’s security posture. \nTushar will guide you through the core concepts of Zero Trust Network Access (ZTNA) and discuss its relationship with broader network security practices. A key highlight of this session will be a demonstration of Qryptic\, an open-source tool built by Tushar to practically illustrate ZTNA principles in action. This will provide valuable insights into how open source can empower security professionals to implement and understand complex security models. Join this session to deepen your understanding of ZTNA\, explore practical open-source solutions\, and learn how to commit to safeguarding your digital environments in an increasingly complex world.
URL:https://openssf.org/event/zero-trust-network-access/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=UTC:20250529T200000
DTEND;TZID=UTC:20250529T210000
DTSTAMP:20260508T073853
CREATED:20250516T213750Z
LAST-MODIFIED:20250529T080331Z
UID:10000069-1748548800-1748552400@openssf.org
SUMMARY:Introduction To The OpenSSF
DESCRIPTION:Often asked question ― What can be wrong with open source\, that I need to secure it? \nThis session will provide answers. Along with a comprehensive overview of the vital work being done by the OpenSSF to address these critical challenges head-on. We will explore the landscape of key OpenSSF projects and initiatives\, designed to identify\, fix\, and prevent security vulnerabilities in open source software. Learn how the OpenSSF community is working collaboratively to build a more secure open source supply chain for everyone. Whether you’re a developer\, security professional\, or simply sit downstream in open source ―― understanding the OpenSSF is crucial in navigating the future of software security. \nJoin us for a live stream introducing the Open Source Security Foundation (OpenSSF)\, a cross-industry collaboration dedicated to improving the security of the open source software ecosystem. As open source adoption accelerates globally\, so too do the associated security risks\, creating widening “chasms” that malicious actors can exploit. This increasing reliance on open source components means that vulnerabilities can have a significant “blast radius” across diverse applications and industries. \nTune in to learn how you can benefit from and contribute to a more secure open source world.
URL:https://openssf.org/event/livestream-introduction-to-the-openssf/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=UTC:20250527T140000
DTEND;TZID=UTC:20250527T150000
DTSTAMP:20260508T073853
CREATED:20250516T210022Z
LAST-MODIFIED:20250516T210339Z
UID:10000068-1748354400-1748358000@openssf.org
SUMMARY:Threat Hunting With(in) Open Source
DESCRIPTION:Threat hunting in cybersecurity is a proactive and iterative process of searching through networks\, endpoints\, and datasets to detect malicious\, suspicious\, or risky activities that have evaded existing security defenses. Unlike traditional security measures that react to known threats or alerts\, threat hunting assumes that adversaries may already be present in the environment and actively seeks them out using a combination of skilled human analysis and technology. Open source plays a significant role in the realm of threat hunting. Many powerful tools used for data collection\, analysis\, and visualization in threat hunting are open source\, providing cost-effective and customizable options for security teams. \nIn this informative session\, Rohit Sadgune takes us through his experience with threat hunting\, with a healthy dose of OSS. Join us live on May 27th at 2 pm IST.
URL:https://openssf.org/event/threat-hunting-oss/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=UTC:20250327T140000
DTEND;TZID=UTC:20250327T150000
DTSTAMP:20260508T073853
CREATED:20250317T115106Z
LAST-MODIFIED:20250317T141021Z
UID:10000065-1743084000-1743087600@openssf.org
SUMMARY:Building A Diverse Understanding About Open Source Security with Arjun BM
DESCRIPTION:Dive Deep into the World of Cyber Security with Arjun BM\, who is presently serving as the Head of Security at a global retail organization! \nJoin us for an exclusive live stream with the award-winning cyber security leader\, Arjun BM! With over 20 years of experience having worked with cybersecurity within various domains\, Arjun brings unparalleled insights into the ever-evolving landscape of digital threats. \nIn what is expected to be an engaging session\, Arjun will delve into the following critical areas: \nSecurity in Retail: Explore the unique challenges and strategies involved in safeguarding digital storefronts from various malicious actors.\nSoftware Supply Chain Security: Uncover the vulnerabilities and best practices for securing the software supply chain in today’s interconnected world.\nThe India Cybersecurity Situation: Gain a deep understanding of the current cybersecurity landscape in India\, including emerging threats and opportunities. \nDon’t miss this opportunity to learn from a seasoned expert and get your burning cyber security questions answered live! \nArjun on LinkedIn
URL:https://openssf.org/event/building-a-diverse-understanding-about-open-source-security-with-arjun-bm/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20250213T140000
DTEND;TZID=Asia/Kolkata:20250213T150000
DTSTAMP:20260508T073853
CREATED:20250120T150013Z
LAST-MODIFIED:20250120T154650Z
UID:10000051-1739455200-1739458800@openssf.org
SUMMARY:Live stream: Sparks Fly\, When Security Meets AI
DESCRIPTION:AI is now everywhere! But how prepared are we to protect our data\, models\, and defend other assets? \nJoin us for a special episode of our live streams where we explore the critical intersection of open source security and artificial intelligence. We’ll delve into the lack of security measures protecting AI systems and the urgent need to address the growing needs. This stream will help you gain an understanding of the vast attack surface in AI\, from data poisoning and model theft to adversarial attacks and malicious code injection. It will also educate you about the potential risks of running untrusted AI/ML models\, which would lead to attacks including cryptojacking\, remote code execution\, and data breaches. \nThis live stream features special guest Keerthana Rampa\, who is an Associate Project Manager at AccuKnox. She is a leading expert in AI security and will share her deep knowledge and insights on the challenges and solutions in this rapidly evolving field.
URL:https://openssf.org/event/security-meets-ai-sparks-fly/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20250206T140000
DTEND;TZID=Asia/Kolkata:20250206T150000
DTSTAMP:20260508T073853
CREATED:20250108T093955Z
LAST-MODIFIED:20250108T093955Z
UID:10000050-1738850400-1738854000@openssf.org
SUMMARY:Livestream: All About SaaS Security
DESCRIPTION:Join us for a live stream with Aparna Hinge\, Principal Product Manager at CheckRed\, as she shares her extensive experience in securing SaaS applications. With over 15 years in building secure software\, including 10 years in groundbreaking security research and product design\, Aparna brings a wealth of knowledge to the table. As a Certified Information Systems Auditor (CISA)\, she possesses deep expertise in technical areas coupled with governance and policy requirements. This allows her to navigate the complexities of SaaS security with aplomb! \nIn this captivating session\, Aparna will pull back the curtain on the often-hidden world of SaaS security\, sharing firsthand accounts of the challenges she’s conquered and the intricate technical puzzles she’s solved while architecting robust security for the applications we rely on every day. Discover the nuances of safeguarding SaaS environments and glean invaluable wisdom from a true industry veteran. \nCheckRed’s comprehensive security posture management (SSPM + CSPM) approach delivers a streamlined\, centralized cloud security solution\, providing comprehensive coverage across major cloud providers like AWS\, Azure\, GCP\, and Linode\, as well as over 50 widely used SaaS applications\, including Salesforce\, Microsoft 365\, ServiceNow\, and Okta. \nRemember to join us live on Thu\, Feb 6th\, 2025!
URL:https://openssf.org/event/livestream-all-about-saas-security/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=UTC:20241128T140000
DTEND;TZID=UTC:20241128T150000
DTSTAMP:20260508T073853
CREATED:20241125T043752Z
LAST-MODIFIED:20241125T043752Z
UID:10000047-1732802400-1732806000@openssf.org
SUMMARY:Building Security Tooling: Trials and Triumphs
DESCRIPTION:Join Barun Acharya\, who is many things ― a CNCF Ambassador\,  maintainer for KubeArmor\, and works as a Software Engineer at Accuknox\, as he gives us the inside story of what it is like to build and maintain security tooling. In his conversation\, he will be explaining the common pitfalls one can expect when designing security tooling and the difficult decisions developer habits put them in. \nIf you’ve wondered how to strike a balance between building opinionated tooling that sets out to accomplish something versus being an open platform for developers\, this live stream is certain to spark your interest. Join us to learn more about security\, tooling\, and the challenges that surround security awareness.
URL:https://openssf.org/event/building-security-tooling/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20241127T140000
DTEND;TZID=Asia/Kolkata:20241127T150000
DTSTAMP:20260508T073853
CREATED:20241104T083901Z
LAST-MODIFIED:20241104T102033Z
UID:10000045-1732716000-1732719600@openssf.org
SUMMARY:Policy\, Security\, and the Software Supply Chain
DESCRIPTION:﻿ \nJoin us for a live stream with security expert Abhisek Datta! Abhisek has over a decade of experience in platform & security engineering\, DevSecOps\, and building secure B2B SaaS platforms. \nIn this session\, Abhisek will discuss the critical intersection of policy\, security\, and the modern software supply chain. He’ll also demonstrate vet\, an open-source tool he co-developed to identify risks in open source dependencies\, helping engineering and security teams leverage DevSecOps and policy-as-code practices to build more secure software. \nDon’t miss this opportunity to learn: \n\nThe evolving landscape of software supply chain security.\nHow to identify and mitigate risks in open source dependencies.\nPractical strategies for integrating security into your DevSecOps workflow.\nA live demo of vet\, a new tool for securing software supply chains.\nThe impact of the work OpenSSF has been doing within the larger security community.\n\nMark your calendars and join the live stream! \nThis event is being hosted in the run up to SOSS Community Day\, India\, co-located with KubeCon + CloudNativeCon India 2024. Please remember to register for the event here.
URL:https://openssf.org/event/policy-security-software-supply-chain/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240711T140000
DTEND;TZID=Asia/Kolkata:20240711T150000
DTSTAMP:20260508T073853
CREATED:20240617T164309Z
LAST-MODIFIED:20240711T083937Z
UID:10000036-1720706400-1720710000@openssf.org
SUMMARY:Hosting: Tips\, Tricks\, and Techniques to Ace Supply Chain Security
DESCRIPTION:In this live stream\, we will be hosting Saiyam Pathak who is a seasoned technology evangelist. He comes with a lot of experience in the CNCF\, Docker\, WASM\, and other communities and has recently begun to focus on software supply chain security. Saiyam Pathak is the founder of Kubesimplify\, focusing on simplifying cloud-native and Kubernetes technologies. Previously at Civo\, Walmart Labs\, Oracle\, and HP\, Saiyam has worked on many facets of Kubernetes\, including machine learning platforms\, scaling\, multi-cloud\, and managed Kubernetes services. He is a prolific speaker and is best known for helping a huge number of folks learn and practice Kubernetes and cloud native tech. \nIn this stream\, Saiyam will focus on his journey with software supply chain security\, and in particular how some OpenSSF projects have helped him along the way. He will also demonstrate some of his favourite tools.
URL:https://openssf.org/event/tips-tricks-and-techniques-to-ace-supply-chain-security/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240627T140000
DTEND;TZID=Asia/Kolkata:20240627T150000
DTSTAMP:20260508T073853
CREATED:20240503T012033Z
LAST-MODIFIED:20240612T084420Z
UID:10000033-1719496800-1719500400@openssf.org
SUMMARY:Hosting: SLSA\, A Security Paradigm For Your Builds
DESCRIPTION:Join Teja Kummarikuntla from Harness as we discuss various levels of SLSA achievable. Teja will walk viewers through the basics of Software Supply Chain Security\, viz. provenance\, attestation\, and other pipeline runs that provide artifact integrity. The talk will make use of several tools such as Cosign to accomplish this. Join us to learn how supply chain security can benefit your organization. \nThe conversation will be streamed here:
URL:https://openssf.org/event/slsa-security-for-builds/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240614T140000
DTEND;TZID=Asia/Kolkata:20240614T150000
DTSTAMP:20260508T073853
CREATED:20240503T010358Z
LAST-MODIFIED:20240612T084521Z
UID:10000032-1718373600-1718377200@openssf.org
SUMMARY:Hosting: Building A Culture Of Security
DESCRIPTION:In this interesting chat with Gowtham Sundar\, who currently leads AppSec @ SPH Media\, we discuss how organizations build a culture of security awareness among its employees. We delve into details about how individuals tasked with the challenge of rolling out security initiatives face unique challenges ― both technical and cultural ones. \nWatch the stream live here:
URL:https://openssf.org/event/hosting-building-a-culture-of-security/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240530T140000
DTEND;TZID=Asia/Kolkata:20240530T150000
DTSTAMP:20260508T073853
CREATED:20240315T215206Z
LAST-MODIFIED:20240329T155807Z
UID:10000028-1717077600-1717081200@openssf.org
SUMMARY:Hosting: Confidential Computing ― A Refreshing Perspective
DESCRIPTION:Vaishali joins us for a stream where she brings the ideas of Confidential Computing to the fore in the backdrop of global events. Join us to learn about technology\, geopolitics\, and how these events intersect!
URL:https://openssf.org/event/confidential-computing-a-refreshing-perspective/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240523T140000
DTEND;TZID=Asia/Kolkata:20240523T150000
DTSTAMP:20260508T073853
CREATED:20240315T215025Z
LAST-MODIFIED:20240329T155840Z
UID:10000027-1716472800-1716476400@openssf.org
SUMMARY:Hosting: Supply Chain Security ― Fundamentals and more...
DESCRIPTION:In this live stream\, join Sangam Biradar as he explores the fundamental building blocks of Supply Chain Security. He will progressively showcase how to build more security into the code\, build\, and other phases of the SDLC.
URL:https://openssf.org/event/supply-chain-security-fundamentals-and-more/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240502T140000
DTEND;TZID=Asia/Kolkata:20240502T150000
DTSTAMP:20260508T073853
CREATED:20240315T214848Z
LAST-MODIFIED:20240329T155913Z
UID:10000026-1714658400-1714662000@openssf.org
SUMMARY:Hosting: Tools & Techniques ― BOLT
DESCRIPTION:In this technical deep dive\, Abhishek (founder of Koalalab) will showcase BOLT:. It is meant for transparent egress monitoring for build systems to harden the GitHub CI environment to enable protection against exfiltration of secrets and tampering of source-code. The idea is to teach how to bring security rigor to build pipelines using paradigms that typically help secure production systems.
URL:https://openssf.org/event/tools-techniques-bolt/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240411T140000
DTEND;TZID=Asia/Kolkata:20240411T150000
DTSTAMP:20260508T073853
CREATED:20240315T214548Z
LAST-MODIFIED:20240410T143934Z
UID:10000025-1712844000-1712847600@openssf.org
SUMMARY:Hosting: Techniques & Tools ― PINNY
DESCRIPTION:In this special live stream\, we will take a look at PINNY. It is designed as a simple tool for developers to hash-pin Dockerfiles and GitHub actions(two OSS dependencies which don’t have package managers but are instead directly downloaded from source) which protects from dependency hijacking & confusion. We will also be chatting about why securing CI/CD pipelines is important\, which is opined to be an overlooked aspect of software supply chain security. \nOur special guest will be Abhishek Anand\, founder of Koalalab.
URL:https://openssf.org/event/techniques-tools-pinny/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240328T120000
DTEND;TZID=Asia/Kolkata:20240328T130000
DTSTAMP:20260508T073853
CREATED:20240315T214227Z
LAST-MODIFIED:20240315T214227Z
UID:10000024-1711627200-1711630800@openssf.org
SUMMARY:How To Secure Open Source Code?
DESCRIPTION:In this live stream\, join us to learn how to secure open source software. It is a great way for you to learn about open source\, secure coding practices\, and *bonus* the benefits of being an OpenSSF member!
URL:https://openssf.org/event/how-to-secure-open-source-code/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240327T140000
DTEND;TZID=Asia/Kolkata:20240327T150000
DTSTAMP:20260508T073853
CREATED:20240315T213859Z
LAST-MODIFIED:20240315T213959Z
UID:10000023-1711548000-1711551600@openssf.org
SUMMARY:Let's Chat Open Source Security!
DESCRIPTION:Join us as part of the first (of many) India Initiative live streams! \nIn this live stream\, we invite you to join in on a special conversation with Vandana Verma. Vandana is a security advocate and promotes secure coding practices. In this chat we will be talking about what developers lack in terms of security best practices and how best to fill that gap. \n \n(Please note: Times specified are in IST)
URL:https://openssf.org/event/lets-chat-open-source-security/
CATEGORIES:India Initiative
END:VEVENT
END:VCALENDAR