Open Source Security

What’s in the SOSS? Podcast #60 – S3E12 Packaging, Transferring, and Deploying Software in Air-Gapped Environments with Zarf

Podcast Air-gap Kubernetes Open Source Security Software Supply Chain Zarf

What’s in the SOSS? Podcast #59 – S3E11 Building a Connected Africa: The Origin Story of OSSAfrica with Prince Asiedu

Podcast Ghana Tech Open Source Security OpenSSF OSSAfrica Software Supply Chain

From Noise to Signal: Using Runtime Context to Win the Vulnerability Management Battle

Blog Guest Blog CVE Open Source Security Prioritization Runtime Security vulnerability management

OpenSSF Tech Talk Recap: Securing Agentic AI

At our recent Open Source Security Foundation (OpenSSF) Tech Talk, experts from Microsoft, Thread AI, Canonical, and the OpenSSF AI/ML Security Working Group joined forces to dismantle the "black box" of AI security.

Blog agentic AI Cybersecurity Open Source Security OpenSSF Tech Talk

Rethinking Post-Deployment Vulnerability Detection

Blog Guest Blog Continuous Delivery CVE Digital Twin Open Source Security OpenSSF OSV.dev Post-Deployment Security SBOM Supply Chain Security vulnerability management

From AIxCC to OpenSSF: Welcoming OSS-CRS to Advance AI Driven Open Source Security

Blog AI security AI/ML Security Working Group AIxCC Automated Patching Bug Hunting Cyber Reasoning Systems DARPA LLM security Open Source Security OpenSSF OSS-CRS Software Security

What’s in the SOSS? Podcast #57 – S3E9 From Noise to Signal: Security Expertise and Kusari Inspector with Mike Lieberman

Podcast AI Vulnerability Reporting Kusari Inspector Mike Lieberman Open Source Security OpenSSF Scorecard Secure by Design SLSA software maintainers Supply Chain Security vulnerability management

Kusari Partners with OpenSSF to Strengthen Open Source Software Supply Chain Security

Blog Guest Blog AI security Cybersecurity DevOps GUAC Kusari Kusari Inspector Open Source Security OpenSSF SLSA Software Dependencies Software Supply Chain vulnerability management

OpenSSF Celebrates New Members, No-Cost Tooling, and Project Milestones

Blog Press Release AI security Cyber Resilience Act Gemara Project Helvethink Kusari Inspector Open Source Security Open Source SecurityCon Europe OpenSSF Quantrexion SLSA Spectro Cloud

Leading Tech Coalition Invests $12.5 Million Through OpenSSF and Alpha-Omega to Strengthen Open Source Security

Blog AI security Alpha-Omega Artificial Intelligence Cybersecurity Investment Linux Foundation Maintainer Support Open Source Security OpenSSF Software Supply Chain vulnerability management