BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Open Source Security Foundation - ECPv6.15.20//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-WR-CALNAME:Open Source Security Foundation
X-ORIGINAL-URL:https://openssf.org
X-WR-CALDESC:Events for Open Source Security Foundation
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:Asia/Kolkata
BEGIN:STANDARD
TZOFFSETFROM:+0530
TZOFFSETTO:+0530
TZNAME:IST
DTSTART:20230101T000000
END:STANDARD
END:VTIMEZONE
BEGIN:VTIMEZONE
TZID:UTC
BEGIN:STANDARD
TZOFFSETFROM:+0000
TZOFFSETTO:+0000
TZNAME:UTC
DTSTART:20230101T000000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20250213T140000
DTEND;TZID=Asia/Kolkata:20250213T150000
DTSTAMP:20260508T090129
CREATED:20250120T150013Z
LAST-MODIFIED:20250120T154650Z
UID:10000051-1739455200-1739458800@openssf.org
SUMMARY:Live stream: Sparks Fly\, When Security Meets AI
DESCRIPTION:AI is now everywhere! But how prepared are we to protect our data\, models\, and defend other assets? \nJoin us for a special episode of our live streams where we explore the critical intersection of open source security and artificial intelligence. We’ll delve into the lack of security measures protecting AI systems and the urgent need to address the growing needs. This stream will help you gain an understanding of the vast attack surface in AI\, from data poisoning and model theft to adversarial attacks and malicious code injection. It will also educate you about the potential risks of running untrusted AI/ML models\, which would lead to attacks including cryptojacking\, remote code execution\, and data breaches. \nThis live stream features special guest Keerthana Rampa\, who is an Associate Project Manager at AccuKnox. She is a leading expert in AI security and will share her deep knowledge and insights on the challenges and solutions in this rapidly evolving field.
URL:https://openssf.org/event/security-meets-ai-sparks-fly/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20250206T140000
DTEND;TZID=Asia/Kolkata:20250206T150000
DTSTAMP:20260508T090129
CREATED:20250108T093955Z
LAST-MODIFIED:20250108T093955Z
UID:10000050-1738850400-1738854000@openssf.org
SUMMARY:Livestream: All About SaaS Security
DESCRIPTION:Join us for a live stream with Aparna Hinge\, Principal Product Manager at CheckRed\, as she shares her extensive experience in securing SaaS applications. With over 15 years in building secure software\, including 10 years in groundbreaking security research and product design\, Aparna brings a wealth of knowledge to the table. As a Certified Information Systems Auditor (CISA)\, she possesses deep expertise in technical areas coupled with governance and policy requirements. This allows her to navigate the complexities of SaaS security with aplomb! \nIn this captivating session\, Aparna will pull back the curtain on the often-hidden world of SaaS security\, sharing firsthand accounts of the challenges she’s conquered and the intricate technical puzzles she’s solved while architecting robust security for the applications we rely on every day. Discover the nuances of safeguarding SaaS environments and glean invaluable wisdom from a true industry veteran. \nCheckRed’s comprehensive security posture management (SSPM + CSPM) approach delivers a streamlined\, centralized cloud security solution\, providing comprehensive coverage across major cloud providers like AWS\, Azure\, GCP\, and Linode\, as well as over 50 widely used SaaS applications\, including Salesforce\, Microsoft 365\, ServiceNow\, and Okta. \nRemember to join us live on Thu\, Feb 6th\, 2025!
URL:https://openssf.org/event/livestream-all-about-saas-security/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=UTC:20241128T140000
DTEND;TZID=UTC:20241128T150000
DTSTAMP:20260508T090129
CREATED:20241125T043752Z
LAST-MODIFIED:20241125T043752Z
UID:10000047-1732802400-1732806000@openssf.org
SUMMARY:Building Security Tooling: Trials and Triumphs
DESCRIPTION:Join Barun Acharya\, who is many things ― a CNCF Ambassador\,  maintainer for KubeArmor\, and works as a Software Engineer at Accuknox\, as he gives us the inside story of what it is like to build and maintain security tooling. In his conversation\, he will be explaining the common pitfalls one can expect when designing security tooling and the difficult decisions developer habits put them in. \nIf you’ve wondered how to strike a balance between building opinionated tooling that sets out to accomplish something versus being an open platform for developers\, this live stream is certain to spark your interest. Join us to learn more about security\, tooling\, and the challenges that surround security awareness.
URL:https://openssf.org/event/building-security-tooling/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20241127T140000
DTEND;TZID=Asia/Kolkata:20241127T150000
DTSTAMP:20260508T090129
CREATED:20241104T083901Z
LAST-MODIFIED:20241104T102033Z
UID:10000045-1732716000-1732719600@openssf.org
SUMMARY:Policy\, Security\, and the Software Supply Chain
DESCRIPTION:﻿ \nJoin us for a live stream with security expert Abhisek Datta! Abhisek has over a decade of experience in platform & security engineering\, DevSecOps\, and building secure B2B SaaS platforms. \nIn this session\, Abhisek will discuss the critical intersection of policy\, security\, and the modern software supply chain. He’ll also demonstrate vet\, an open-source tool he co-developed to identify risks in open source dependencies\, helping engineering and security teams leverage DevSecOps and policy-as-code practices to build more secure software. \nDon’t miss this opportunity to learn: \n\nThe evolving landscape of software supply chain security.\nHow to identify and mitigate risks in open source dependencies.\nPractical strategies for integrating security into your DevSecOps workflow.\nA live demo of vet\, a new tool for securing software supply chains.\nThe impact of the work OpenSSF has been doing within the larger security community.\n\nMark your calendars and join the live stream! \nThis event is being hosted in the run up to SOSS Community Day\, India\, co-located with KubeCon + CloudNativeCon India 2024. Please remember to register for the event here.
URL:https://openssf.org/event/policy-security-software-supply-chain/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240711T140000
DTEND;TZID=Asia/Kolkata:20240711T150000
DTSTAMP:20260508T090129
CREATED:20240617T164309Z
LAST-MODIFIED:20240711T083937Z
UID:10000036-1720706400-1720710000@openssf.org
SUMMARY:Hosting: Tips\, Tricks\, and Techniques to Ace Supply Chain Security
DESCRIPTION:In this live stream\, we will be hosting Saiyam Pathak who is a seasoned technology evangelist. He comes with a lot of experience in the CNCF\, Docker\, WASM\, and other communities and has recently begun to focus on software supply chain security. Saiyam Pathak is the founder of Kubesimplify\, focusing on simplifying cloud-native and Kubernetes technologies. Previously at Civo\, Walmart Labs\, Oracle\, and HP\, Saiyam has worked on many facets of Kubernetes\, including machine learning platforms\, scaling\, multi-cloud\, and managed Kubernetes services. He is a prolific speaker and is best known for helping a huge number of folks learn and practice Kubernetes and cloud native tech. \nIn this stream\, Saiyam will focus on his journey with software supply chain security\, and in particular how some OpenSSF projects have helped him along the way. He will also demonstrate some of his favourite tools.
URL:https://openssf.org/event/tips-tricks-and-techniques-to-ace-supply-chain-security/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240627T140000
DTEND;TZID=Asia/Kolkata:20240627T150000
DTSTAMP:20260508T090129
CREATED:20240503T012033Z
LAST-MODIFIED:20240612T084420Z
UID:10000033-1719496800-1719500400@openssf.org
SUMMARY:Hosting: SLSA\, A Security Paradigm For Your Builds
DESCRIPTION:Join Teja Kummarikuntla from Harness as we discuss various levels of SLSA achievable. Teja will walk viewers through the basics of Software Supply Chain Security\, viz. provenance\, attestation\, and other pipeline runs that provide artifact integrity. The talk will make use of several tools such as Cosign to accomplish this. Join us to learn how supply chain security can benefit your organization. \nThe conversation will be streamed here:
URL:https://openssf.org/event/slsa-security-for-builds/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240614T140000
DTEND;TZID=Asia/Kolkata:20240614T150000
DTSTAMP:20260508T090129
CREATED:20240503T010358Z
LAST-MODIFIED:20240612T084521Z
UID:10000032-1718373600-1718377200@openssf.org
SUMMARY:Hosting: Building A Culture Of Security
DESCRIPTION:In this interesting chat with Gowtham Sundar\, who currently leads AppSec @ SPH Media\, we discuss how organizations build a culture of security awareness among its employees. We delve into details about how individuals tasked with the challenge of rolling out security initiatives face unique challenges ― both technical and cultural ones. \nWatch the stream live here:
URL:https://openssf.org/event/hosting-building-a-culture-of-security/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240530T140000
DTEND;TZID=Asia/Kolkata:20240530T150000
DTSTAMP:20260508T090129
CREATED:20240315T215206Z
LAST-MODIFIED:20240329T155807Z
UID:10000028-1717077600-1717081200@openssf.org
SUMMARY:Hosting: Confidential Computing ― A Refreshing Perspective
DESCRIPTION:Vaishali joins us for a stream where she brings the ideas of Confidential Computing to the fore in the backdrop of global events. Join us to learn about technology\, geopolitics\, and how these events intersect!
URL:https://openssf.org/event/confidential-computing-a-refreshing-perspective/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240523T140000
DTEND;TZID=Asia/Kolkata:20240523T150000
DTSTAMP:20260508T090129
CREATED:20240315T215025Z
LAST-MODIFIED:20240329T155840Z
UID:10000027-1716472800-1716476400@openssf.org
SUMMARY:Hosting: Supply Chain Security ― Fundamentals and more...
DESCRIPTION:In this live stream\, join Sangam Biradar as he explores the fundamental building blocks of Supply Chain Security. He will progressively showcase how to build more security into the code\, build\, and other phases of the SDLC.
URL:https://openssf.org/event/supply-chain-security-fundamentals-and-more/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240502T140000
DTEND;TZID=Asia/Kolkata:20240502T150000
DTSTAMP:20260508T090129
CREATED:20240315T214848Z
LAST-MODIFIED:20240329T155913Z
UID:10000026-1714658400-1714662000@openssf.org
SUMMARY:Hosting: Tools & Techniques ― BOLT
DESCRIPTION:In this technical deep dive\, Abhishek (founder of Koalalab) will showcase BOLT:. It is meant for transparent egress monitoring for build systems to harden the GitHub CI environment to enable protection against exfiltration of secrets and tampering of source-code. The idea is to teach how to bring security rigor to build pipelines using paradigms that typically help secure production systems.
URL:https://openssf.org/event/tools-techniques-bolt/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240411T140000
DTEND;TZID=Asia/Kolkata:20240411T150000
DTSTAMP:20260508T090129
CREATED:20240315T214548Z
LAST-MODIFIED:20240410T143934Z
UID:10000025-1712844000-1712847600@openssf.org
SUMMARY:Hosting: Techniques & Tools ― PINNY
DESCRIPTION:In this special live stream\, we will take a look at PINNY. It is designed as a simple tool for developers to hash-pin Dockerfiles and GitHub actions(two OSS dependencies which don’t have package managers but are instead directly downloaded from source) which protects from dependency hijacking & confusion. We will also be chatting about why securing CI/CD pipelines is important\, which is opined to be an overlooked aspect of software supply chain security. \nOur special guest will be Abhishek Anand\, founder of Koalalab.
URL:https://openssf.org/event/techniques-tools-pinny/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240328T120000
DTEND;TZID=Asia/Kolkata:20240328T130000
DTSTAMP:20260508T090129
CREATED:20240315T214227Z
LAST-MODIFIED:20240315T214227Z
UID:10000024-1711627200-1711630800@openssf.org
SUMMARY:How To Secure Open Source Code?
DESCRIPTION:In this live stream\, join us to learn how to secure open source software. It is a great way for you to learn about open source\, secure coding practices\, and *bonus* the benefits of being an OpenSSF member!
URL:https://openssf.org/event/how-to-secure-open-source-code/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20240327T140000
DTEND;TZID=Asia/Kolkata:20240327T150000
DTSTAMP:20260508T090129
CREATED:20240315T213859Z
LAST-MODIFIED:20240315T213959Z
UID:10000023-1711548000-1711551600@openssf.org
SUMMARY:Let's Chat Open Source Security!
DESCRIPTION:Join us as part of the first (of many) India Initiative live streams! \nIn this live stream\, we invite you to join in on a special conversation with Vandana Verma. Vandana is a security advocate and promotes secure coding practices. In this chat we will be talking about what developers lack in terms of security best practices and how best to fill that gap. \n \n(Please note: Times specified are in IST)
URL:https://openssf.org/event/lets-chat-open-source-security/
CATEGORIES:India Initiative
END:VEVENT
END:VCALENDAR