📩 Stay Updated! Follow us on LinkedIn and join our mailing list for the latest news!

The OpenSSF 2024 Annual Report is Live!

Download Report

The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public good.

Contribute to Technical Initiatives

Collaborate on capabilities and best practices that secure open source software.

Start a Conversation

Participate in the latest community conversations and engage with experts.

Take Security Training

Take free courses on secure coding practices as part of our certificate program.

Read our Security Guides

Explore our helpful security guides to help secure your project from the start.

What’s in the SOSS? Podcast

Listen on Apple Podcasts Listen on Spotify Listen on Overcast Listen on Pocket Casts

Read the Latest Reports From OpenSSF

Plan for Improving Software Developer Security Education

2024 Annual Report

Cybersecurity in Energy Infrastructure Whitepaper

Recent Blog Posts

Blog EU Cyber Resilience Act Global Cyber Policy

December 23, 2024

CRA Stewards and Manufacturers Workshop: Key Takeaways and Next Steps

Last week the Linux Foundation Europe and OpenSSF teams held a workshop focused on the implications of the recently published Regulation (EU) 2024/2847, commonly known as the Cyber Resilience Act…

OpenSSF

Blog

December 20, 2024

Staying OSS Safe During the Holidays

The holiday season is upon us, and while many of us are gearing up for festivities, gift shopping, and reconnecting with loved ones, it’s also a time when cybersecurity threats…

OpenSSF

December 16, 2024

SigstoreCon 2024: Advancing Software Supply Chain Security

On November 12, 2024, the software security community gathered in Salt Lake City for SigstoreCon: Supply Chain Day, co-located with KubeCon North America 2024. The one-day conference brought together developers,…

OpenSSF

Blog EU Cyber Resilience Act

December 11, 2024

Understanding the CRA: OpenSSF’s Role in the Cyber Resilience Act Implementation – Part 2

In Part 1, we provided a general overview of the CRA and highlighted OpenSSF’s current activities related to its implementation. In Part 2, we’ll take a closer look at the…

OpenSSF

Open source software is pervasive in data centers, consumer devices, and applications. Securing open source software requires fostering collaboration, establishing best practices, and developing innovative solutions.

Join the growing list of organizations supporting the advancement of securing open source technology and funding the development and adoption of OpenSSF initiatives.

Explore Membership in OpenSSF

Mastodon

Copyright © 2024 The Linux Foundation® . All rights reserved. The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our Trademark Usage page. Linux is a registered trademark of Linus Torvalds. Privacy Policy and Terms of Use.

The OpenSSF 2024 Annual Report is Live!

The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public good.

Contribute to Technical Initiatives

Start a Conversation

Take Security Training

Read our Security Guides

What’s in the SOSS? Podcast

Read the Latest Reports From OpenSSF

Recent Blog Posts

CRA Stewards and Manufacturers Workshop: Key Takeaways and Next Steps

Staying OSS Safe During the Holidays

SigstoreCon 2024: Advancing Software Supply Chain Security

Understanding the CRA: OpenSSF’s Role in the Cyber Resilience Act Implementation – Part 2

Open source software is pervasive in data centers, consumer devices, and applications. Securing open source software requires fostering collaboration, establishing best practices, and developing innovative solutions.

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get the latest announcements, event info, and the community news in your inbox

The OpenSSF 2024 Annual Report is Live!

The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public good.

Contribute to Technical Initiatives

Start a Conversation

Take Security Training

Read our Security Guides

What’s in the SOSS? Podcast

Read the Latest Reports From OpenSSF

Recent Blog Posts

CRA Stewards and Manufacturers Workshop: Key Takeaways and Next Steps

Staying OSS Safe During the Holidays

SigstoreCon 2024: Advancing Software Supply Chain Security

Understanding the CRA: OpenSSF’s Role in the Cyber Resilience Act Implementation – Part 2

Open source software is pervasive in data centers, consumer devices, and applications. Securing open source software requires fostering collaboration, establishing best practices, and developing innovative solutions.

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Subscribe to the OpenSSF Newsletter!

Get the latest announcements, event info, and the community news in your inbox