Open Source Community

What’s in the SOSS? Podcast #50 – S3E2 Demystifying the CFP Process with KubeCon North America Keynote Speakers

Podcast call for proposals CFP community speaking conference CFP tips conference speaking developer advocacy first time speakers imposter syndrome keynote speakers kubecon Open Source Community open source conferences open source leadership Open Source Summit OpenSSF public speaking technical talks

What’s in the SOSS? Podcast #49 – S3E1 Why Marketing Matters in Open Source: Introducing Co-Host Sally Cooper

Podcast Open Source Community open source marketing OpenSSF personal branding personas

What’s in the SOSS? Podcast #47 – S2E24 Teaching the Next Generation: Software Supply Chain Security in Academia with Justin Cappos

NYU professor Justin Cappos joins the OpenSSF podcast to discuss why software supply chain security is missing from most university curricula -- and how hands-on, open source-first education can change that.

Podcast academia code signing higher education Linux Foundation Open Source Community Open Source Security OpenSSF Podcast SBOM Secure Software Development security education Software Supply Chain Security What’s in the SOSS

Building Security in Open Source for Financial Services: OpenSSF at Open Source in Finance Forum (OSFF)

Financial services run on open source. With regulations growing and supply chains under pressure, institutions need clear frameworks and reliable data to keep systems secure. At the Open Source in Finance Forum (OSFF) the OpenSSF community is sponsoring and sharing sessions on the OSPS Baseline, vulnerability data, and AI security. These talks demonstrate how our…

Blog AI AI security Community Linux Foundation Open Source Open Source Community Open Source Security OpenSSF OSPS Baseline

OpenSSF Newsletter – September 2025

Welcome to the September 2025 edition of the OpenSSF Newsletter! Here’s a roundup of the latest developments, key events, and upcoming opportunities in the Open Source Security community. TL;DR: 🎉...

Newsletter Community Cyber Resilience Act education Newsletter Open Source Open Source Community Open Source Security Software Supply Chain

OpenSSF Newsletter – August 2025

Welcome to the August 2025 edition of the OpenSSF Newsletter! Here’s a roundup of the latest developments, key events, and upcoming opportunities in the Open Source Security community. TL;DR: 🎉...

Newsletter Community Newsletter Open Source Community OpenSSF

🎉 Celebrating Five Years of OpenSSF: A Journey Through Open Source Security

August 2025 marks five years since the official formation of the Open Source Security Foundation (OpenSSF). Born out of a critical need to secure the software supply chains and open...

Blog AI security Alpha-Omega C++ Compiler Hardening CVEs Cyber Resilience Act GUAC mentorship MLSecOps Open Source Community Open Source Policy Open Source Security Open Source Security Foundation OpenSSF OSPS Baseline Scorecard Secure Software Development security best practices sigstore SLSA Software Supply Chain

What’s in the SOSS? Podcast #32 – S2E09 Yoda, Inclusive Strategies, and the Jedi Council: A Conversation with Dr. Eden-Reneé Hayes

Podcast DEIA Inclusive Leadership Open Source Community Star Wars and DEI What's in the SOSS Podcast

Vulnerability Enumeration Conundrum – an Open Source Perspective on CVE and CWE

In recent days, the vulnerability management ecosystem has experienced shocking news that the de facto standard used throughout industry and upstream, the CVE & CWE Programs, were unexpectedly being defunded and at risk of shuttering its doors. This caused 24 hours of panic up and downstream, but that decision was quickly reversed as CISA stepped…

Blog Guest Blog CVE CWE Open Source Open Source Community OpenSSF

What’s in the SOSS? Podcast #28 – S2E05 Secure Software Starts with Awareness: Education & Open Source with the Council of Daves

Podcast CRA Developers education Open Source Community Podcast Security