BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Open Source Security Foundation - ECPv6.15.18//NONSGML v1.0//EN
CALSCALE:GREGORIAN
METHOD:PUBLISH
X-ORIGINAL-URL:https://openssf.org
X-WR-CALDESC:Events for Open Source Security Foundation
REFRESH-INTERVAL;VALUE=DURATION:PT1H
X-Robots-Tag:noindex
X-PUBLISHED-TTL:PT1H
BEGIN:VTIMEZONE
TZID:Asia/Kolkata
BEGIN:STANDARD
TZOFFSETFROM:+0530
TZOFFSETTO:+0530
TZNAME:IST
DTSTART:20250101T000000
END:STANDARD
END:VTIMEZONE
BEGIN:VTIMEZONE
TZID:UTC
BEGIN:STANDARD
TZOFFSETFROM:+0000
TZOFFSETTO:+0000
TZNAME:UTC
DTSTART:20250101T000000
END:STANDARD
END:VTIMEZONE
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20260305T140000
DTEND;TZID=Asia/Kolkata:20260305T150000
DTSTAMP:20260406T220803
CREATED:20260223T151357Z
LAST-MODIFIED:20260223T160826Z
UID:10000090-1772719200-1772722800@openssf.org
SUMMARY:Don’t Gawk. Use GUAC Instead.
DESCRIPTION:The definition of “gawk” is “to stare stupidly\, rudely\, or with amazement\, often with an open mouth”. This perfectly captures the reaction that software engineers have when they encounter supply chain security issues. \nLack of transparency is a huge blindside when working with open source tools. This blind spot could blow up into a project black hole — invisible\, resource depleting\, destructive —  if not handled correctly. How do we build situational awareness from this position of incognizance? \nEnter GUAC! A project built by the community and devised to solve the problem of not knowing your software composition. \nWhether you’re an enterprise or just an enterprising indie dev\, this session has something for you. Learn how to make use of GUAC for improving your supply chain security posture. Find out how teams are benefitting from better knowledge of the OSS components in their toolchain. \nGuest Bio \nShreyas Pandya \nStaff software engineer @Guidewire software \nShreyas Pandya is a results-oriented Software Engineer and leader with deep expertise in web application development. He has built web services (microservices)\, APIs\, and has handled scalability\, security\, and cloud infrastructure. Shreyas possesses  experience in working within agile environments and fast-paced startup teams. He currently serves as a Platform Engineer at Guidewire\, where he leads a team of engineers in the delivery of various products. \nDate: 5th March 2026 \nTime: 2 pm IST
URL:https://openssf.org/event/dont-gawk-use-guac/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=UTC:20260311T140000
DTEND;TZID=UTC:20260311T150000
DTSTAMP:20260406T220803
CREATED:20260305T143059Z
LAST-MODIFIED:20260305T143650Z
UID:10000093-1773237600-1773241200@openssf.org
SUMMARY:The Invisible Threat: Secure & Sovereign Digital Backbone
DESCRIPTION:As India’s critical infrastructure shifts from a hardware-heavy setup to “softwarized” environments\, our national security now depends on the integrity of the software supply chain. Join us for an in-depth session with Arpit Tripathi as we move beyond traditional cybersecurity tropes to discuss why the real battlefield isn’t the radio—it’s the interface. \nWe will explore how modern\, cloud-native telecom systems are vulnerable not just to hackers\, but to fundamental modeling failures in Service-Based Interfaces (SBI) and API trust assumptions. \nKey Discussion Points\n\nThe Shift to Softwarization: Why software supply chain security is now a geopolitical imperative.\nBeyond the Radio: Understanding the new attack surfaces in API-driven\, interconnected systems.\nPolicy & Standards: Insights into Standard-Essential Patent (SEP) governance and the role of the TSDSI in India.\nProactive Defense: Why designing security at the interface level is the only way to move from “reacting” to “preventing.”\n\nMeet the Speaker\nArpit Tripathi is a Telecom Engineer and Research Scholar at the Networked and Wireless Systems Lab (IIT Hyderabad). With a unique background spanning both deep technical engineering and public policy\, Arpit’s work focuses on the intersection of open-source security\, telecom infrastructure\, and the doctrinal analysis of tech policy governance in India. \n  \nDate: 11th March 2026 \nTime: 2 PM IST \n 
URL:https://openssf.org/event/india-tech-and-public-policy-critical-infrastructure/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20260316
DTEND;VALUE=DATE:20260318
DTSTAMP:20260406T220803
CREATED:20260108T151142Z
LAST-MODIFIED:20260309T143946Z
UID:10000084-1773619200-1773791999@openssf.org
SUMMARY:FOSS Backstage
DESCRIPTION:Speaking: The OpenSSF Community will be speaking at The 8th edition of FOSS Backstage in Berlin on 16-17 March 2026.
URL:https://openssf.org/event/foss-backstage/
CATEGORIES:Community Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2026/01/download.png
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20260319T140000
DTEND;TZID=Asia/Kolkata:20260319T150000
DTSTAMP:20260406T220803
CREATED:20260305T091826Z
LAST-MODIFIED:20260309T125439Z
UID:10000092-1773928800-1773932400@openssf.org
SUMMARY:Security In An Open World
DESCRIPTION:Join us on March 19th 2026 for a chat with Abhishek Chauhan\, who leads Sonatype India. \nMillions of software developers trust Sonatype to keep their open source codebases\, libraries\, and dependencies safe. This is one of the oldest companies securing the software supply chain. \nIndia is home to one of the world’s fastest-growing developer communities and is rapidly emerging as a key market for AI-driven software development. The demand for building\, consuming\, and securing code is reaching unprecedented levels as organizations accelerate their adoption of modern technologies. \nAt the same time\, the country continues to produce exceptional engineering talent\, making it a global hub for innovation and technical expertise. Given these factors\, India presents a compelling opportunity for Sonatype to deepen its innovation and talent footprint. \nAnother important topic is the Security Slam event! We will spend a little time talking about what the event is\, what Sonatype aims to achieve\, and how best you can participate in this. \nGuest: Abhishek Chauhan\nSenior Director\, Sonatype \nDate: 19th March 2025\nTime: 2 pm to 3 pm IST
URL:https://openssf.org/event/security-in-an-open-world/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20260323
DTEND;VALUE=DATE:20260324
DTSTAMP:20260406T220803
CREATED:20251119T214258Z
LAST-MODIFIED:20260108T150022Z
UID:10000078-1774224000-1774310399@openssf.org
SUMMARY:Open Source SecurityCon EU 2026
DESCRIPTION:Hosting: Open Source SecurityCon is coming to Europe! This is a new event that fosters collaboration and shares innovation in cloud native security and open source software security. Sessions will cover architecture and policy\, secure software development\, supply chain security\, identity and access\, and open source public policy. The 1-day event will gather a diverse community of professionals to include software developers\, security engineers\, public sector experts\, CISOs\, CIOs and tech pioneers to address challenges and opportunities in modern security. Join us to collaborate and discover tools\, knowledge and strategies to ensure a safer\, more secure tomorrow.
URL:https://openssf.org/event/open-source-securitycon-2026/
CATEGORIES:OpenSSF Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2025/11/Copy-of-23-March-2026-Amsterdam-The-Netherlands.png
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20260323
DTEND;VALUE=DATE:20260327
DTSTAMP:20260406T220803
CREATED:20251119T215023Z
LAST-MODIFIED:20260309T143905Z
UID:10000080-1774224000-1774569599@openssf.org
SUMMARY:KubeCon + CloudNativeCon Europe 2026
DESCRIPTION:Sponsoring: OpenSSF is proud to sponsor KubeCon + CloudNativeCon Europe 2026! We’ll have a full booth presence throughout the week\, plus a colocated event – Open Source SecurityCon – taking place on 23 March. Join us to connect with the community\, learn about the latest in open source security\, and explore how our projects support a more secure cloud native ecosystem. \nKubeCon + CloudNativeCon brings together adopters and technologists from leading open source and cloud native communities. This year’s conference takes place in Amsterdam from 23–26 March 2026.Come visit us at the OpenSSF booth!
URL:https://openssf.org/event/kubecon-cloudnativecon-europe-2026/
CATEGORIES:Community Events,OpenSSF Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2025/11/Screenshot-2025-11-19-at-4.47.18-PM.png
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20260323
DTEND;VALUE=DATE:20260327
DTSTAMP:20260406T220803
CREATED:20260325T181822Z
LAST-MODIFIED:20260325T181857Z
UID:10000106-1774224000-1774569599@openssf.org
SUMMARY:RSAC Conference 2026
DESCRIPTION:Attending: The OpenSSF community is attending RSAC Conference this year. RSAC Conference is a premier global cybersecurity event series\, with the 2026 USA event taking place March 23–26 in San Francisco\, focusing on AI-driven security\, agentic security\, and collaborative defense. \nAndrew Carney from DARPA\, will join Taesoo Kim\, Michael Brown\, and Tyler Nighswander for a conversation on what they’ve built and learned since winning AI Cyber Challenge last August. \nIf you’re interested in where automated cyber defense is heading\, join us for “Automated Cyber Defense: Lessons from DARPA’s AI Cyber Challenge” at RSA Conference 2026\, Thursday at 12:20 PM PDT in Moscone South 202. \nLearn more about the session.
URL:https://openssf.org/event/rsac-conference/
CATEGORIES:Community Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2026/03/Screenshot-2026-03-25-at-2.18.01-PM.png
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20260408T140000
DTEND;TZID=Asia/Kolkata:20260408T150000
DTSTAMP:20260406T220803
CREATED:20260403T151238Z
LAST-MODIFIED:20260403T151935Z
UID:10000107-1775656800-1775660400@openssf.org
SUMMARY:Handing Over The Keys to Your Kingdom: AI-Driven Security Woes
DESCRIPTION:The current security landscape reveals a dangerous paradox: the very tools we trust to secure our code—AI agents and DevSecOps utilities—possess the broadest permissions but the weakest oversight. We are currently witnessing a “credential-drift” crisis where automated tools are becoming the primary vectors for supply chain contagion. \nTo prevent the next cascade\, we must move away from reactive patching and toward a Closed-Loop Integrity System. \nThe last 14 days have highlighted a systemic failure in how we manage “privileged automation.” Trivy\, Axios\, LiteLLM\, OpenAI Codex\, and Claude Code have all fallen prey to various supply chain attacks. \nWe are handing the “keys to the kingdom” to AI agents and automated scanners that are\, by nature\, high-value targets. If you aren’t monitoring your security tools with the same intensity you use for your production databases\, you aren’t running a secure shop—you’re just waiting for the next cascade. \nJoin this talk to learn more about how you can prevent supply chain security failures in your AI world. \n  \n \nGuest: Himanshu Sangshetti \nDate: Wednesday\, 8th April 2025 \nTime: 2 PM IST
URL:https://openssf.org/event/handing-over-the-keys-to-your-kingdom/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20260518
DTEND;VALUE=DATE:20260521
DTSTAMP:20260406T220803
CREATED:20260115T182100Z
LAST-MODIFIED:20260309T143927Z
UID:10000086-1779062400-1779321599@openssf.org
SUMMARY:Open Source Summit North America
DESCRIPTION:Sponsoring: The OpenSSF community will be onsite at the Open Source Summit in Minneapolis\, Minnesota. This is the premier event for open source developers and contributors. It’s where maintainers\, technologists\, and community leaders come together to share knowledge\, collaborate on solutions\, and push open source projects forward. It’s the home for code\, community\, and the people driving the future of open source.
URL:https://openssf.org/event/open-source-summit-north-america-2/
CATEGORIES:Community Events,OpenSSF Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2026/01/image.png
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20260521
DTEND;VALUE=DATE:20260522
DTSTAMP:20260406T220803
CREATED:20251216T191319Z
LAST-MODIFIED:20260309T143417Z
UID:10000081-1779321600-1779407999@openssf.org
SUMMARY:OpenSSF Community Day North America 2026
DESCRIPTION:Join us in Minneapolis\, Minnesota in May 2026 for an OpenSSF community gathering! OpenSSF Community Days bring together a vibrant community from across the Security and Open Source ecosystems to share ideas and progress on capabilities that make it easier to sustainably secure the development\, maintenance\, and consumption of the software. These events\, held regionally and co-located with Open Source Summits\, offer an opportunity to engage with the brightest minds in security for a day of collaboration and innovation in software security best practices. As a home for tools\, standards\, and education\, OpenSSF provides attendees the chance to explore these resources\, share their experiences\, and contribute to a safer and more secure digital world. \nView the agenda.
URL:https://openssf.org/event/openssf-community-day-north-america-2026/
CATEGORIES:OpenSSF Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2025/12/OpenSSF_CD_NA26_Event-Launch-Graphics_Social-Snackable_1200x628px.png
END:VEVENT
BEGIN:VEVENT
DTSTART;TZID=Asia/Kolkata:20260521T140000
DTEND;TZID=Asia/Kolkata:20260521T150000
DTSTAMP:20260406T220803
CREATED:20260310T160235Z
LAST-MODIFIED:20260403T151956Z
UID:10000105-1779372000-1779375600@openssf.org
SUMMARY:Sword and Shield: Security Strategy Needs Both Offense & Defense
DESCRIPTION:In the world of software development\, security is often treated like the “veggies” of the SDLC—everyone knows they’re good for you\, but most developers would rather just skip straight to the dessert (shipping code). But what happens when the “bad guys” decide to join the party uninvited? \nIn this episode\, we sit down with two titans of the industry to see what happens when the irresistible force of Red Teaming meets the immovable object of Blue Teaming. \nMeghana Rao\, our resident VAPT and Cloud Security specialist\, walks us through the art of the “friendly break-in.” She’ll explain why thinking like a villain is the only way to build a digital fortress. On the flip side\, Shubham Mishra\, a seasoned Threat Hunter and Insider Threat specialist\, shows us how she tracks the whispers in the wires to catch intruders before they even realize they’ve been spotted. \nTogether\, they’ll dive into the “Why” of the tandem. Join us to learn why Red and Blue aren’t rivals\, but actually the ultimate “work spouses.” You will also learn how this maps to the SDLC Lifecycle. Fully understand how to bake security into your code so you aren’t trying to “bolt it on” while the house is already on fire. \nWhether you’re a developer trying to understand why your security lead is crying\, or a CISO looking to harmonize your teams\, this episode provides the roadmap to a safer digital landscape. \nDate: 21st May 2026 \nTime: 2 pm IST
URL:https://openssf.org/event/red-team-blue-team-security-strategy-offense-defense/
CATEGORIES:India Initiative
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20260609
DTEND;VALUE=DATE:20260610
DTSTAMP:20260406T220803
CREATED:20260309T191643Z
LAST-MODIFIED:20260309T202442Z
UID:10000103-1780963200-1781049599@openssf.org
SUMMARY:European Open Source Security Forum 2026
DESCRIPTION:Hosting: OpenSSF is hosting European Open Source Security Forum 2026. This event brings together leaders from the open source software (OSS) community\, European governments\, institutions and agencies and the private sector to advance impactful security initiatives\, policy efforts\, and cross-collaboration. \nThis year’s program will feature keynotes from European policymakers\, panels on regulation and emerging technologies such as open source and quantum security\, targeted discussions on lessons learned from legislation like the Cyber Resilience Act (CRA)\, and forward-looking conversations on how to ensure open source is well-represented in future policy frameworks\, along with presentations\, fireside chats\, and opportunities for networking. \n*This event is an invite-only event.
URL:https://openssf.org/event/european-open-source-security-forum-2026/
CATEGORIES:OpenSSF Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2026/03/Social-Snackable.png
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20261006
DTEND;VALUE=DATE:20261007
DTSTAMP:20260406T220803
CREATED:20260112T221221Z
LAST-MODIFIED:20260128T161133Z
UID:10000085-1791244800-1791331199@openssf.org
SUMMARY:OpenSSF Community Day Europe 2026
DESCRIPTION:Hosting: OpenSSF is hosting another Community Day in Europe this fall\, and we’d love for you to join us in Prague\, Czechia. This event is co-located with Open Source Summit EU\, bringing together a dynamic community from the security and open-source ecosystems to share ideas and progress on advancing the capabilities that make it easier to securely develop\, maintain\, and consume secure software. \nCFP opens from May 4 to July 12\, 2026!
URL:https://openssf.org/event/openssf-community-day-europe-2026/
CATEGORIES:OpenSSF Events
ATTACH;FMTTYPE=image/png:https://openssf.org/wp-content/uploads/2026/01/Social-Snackable-3.png
END:VEVENT
BEGIN:VEVENT
DTSTART;VALUE=DATE:20261007
DTEND;VALUE=DATE:20261010
DTSTAMP:20260406T220803
CREATED:20260204T193615Z
LAST-MODIFIED:20260309T143914Z
UID:10000088-1791331200-1791590399@openssf.org
SUMMARY:Open Source Summit Europe 2026
DESCRIPTION:Sponsoring: The OpenSSF community will be onsite at the Open Source Summit in Prague\, Czechia with booth presence. This is the premier event for open source developers and contributors. It’s where maintainers\, technologists\, and community leaders come together to share knowledge\, collaborate on solutions\, and push open source projects forward. It’s the home for code\, community\, and the people driving the future of open source.
URL:https://openssf.org/event/open-source-summit-europe-2/
CATEGORIES:Community Events,OpenSSF Events
ATTACH;FMTTYPE=image/jpeg:https://openssf.org/wp-content/uploads/2026/02/slack-imgs.jpg
END:VEVENT
END:VCALENDAR