OpenSSF
Does the EU CRA affect my business?
The European Union’s Cyber Resilience Act (CRA) is a piece of legislation that covers all countries within the EU and the EEA and entered into force on 10th December 2024. It covers many types of devices and applications that are either sold or otherwise made commercially available on the European market and the intention behind…
Linux Foundation Europe and OpenSSF Launch Initiative to Prepare Maintainers, Manufacturers, and Open Source Stewards for Global Cybersecurity Legislation
BRUSSELS – JANUARY 31, 2025 – Linux Foundation Europe and OpenSSF are excited to announce a global joint initiative to help prepare maintainers, manufacturers, and open source stewards for the implementation of the EU Cyber Resilience Act (CRA) and future cybersecurity legislation targeting jurisdictions around the world. This effort aims to help develop and formalize…
Alpha-Omega 2024 Annual Report
This post originally appeared on Alpha-Omega and has been revised for the OpenSSF. By Alpha-Omega We’re pleased to share our 2024 annual report. In it we try to convey the...
OpenSSF Community Day NA 2025: Call for Proposals Now Open!
Blog
AI & ML in Security
Cyber Resilience
Cybersecurity
Open Source Contributors
Open Source Event
Open Source Governance
Open Source Policy
Open Source Security
Open Source Software
Open Source Summit
OpenSSF
OpenSSF Community Day
OpenSSF Events
OSS Community
OSS Security
OSS Security Best Practices
Regulatory Compliance
Secure Coding
Secure Software Development
Secure Software Supply Chain
Security Awareness
Security Collaboration
Security in Open Source
Software Security Strategies
Software Supply Chain Security
OpenSSF Newsletter – January 2025
Welcome to the January 2025 edition of the OpenSSF Newsletter! Here’s a roundup of the latest developments, key events, and upcoming opportunities in the Open Source Security community. Submit to...
Accelerating OpenSSF Adoption: Unlocking Scorecard Insights with a Centralized Dashboard
Open source components are consumed by over 90% of modern applications. Their omnipresence stems from their cost-effectiveness, flexibility, and collaborative nature, making them a cornerstone of contemporary software development. However, this widespread use also makes it a critical weak link in software security. Many open source projects are maintained by small teams or individual contributors…
CRA Stewards and Manufacturers Workshop: Key Takeaways and Next Steps
Last week the Linux Foundation Europe and OpenSSF teams held a workshop focused on the implications of the recently published Regulation (EU) 2024/2847, commonly known as the Cyber Resilience Act or CRA. The 2024 Stewards and Manufacturers Workshop in Amsterdam was a highly successful event where members from across the Linux Foundation, other upstream open…