Join us in Minnesota on May 21, 2026 for OpenSSF Community Day!

Secure Software Development

What’s in the SOSS? Podcast #47 – S2E24 Teaching the Next Generation: Software Supply Chain Security in Academia with Justin Cappos

NYU professor Justin Cappos joins the OpenSSF podcast to discuss why software supply chain security is missing from most university curricula -- and how hands-on, open source-first education can change that.

Podcast academia code signing higher education Linux Foundation Open Source Community Open Source Security OpenSSF Podcast SBOM Secure Software Development security education Software Supply Chain Security What’s in the SOSS

Building Security in Open Source for Financial Services: OpenSSF at Open Source Finance Forum (OSFF) NYC

OpenSSF sponsored the Open Source Finance Forum in New York, highlighting how collaboration between open source maintainers and the financial sector drives stronger cybersecurity. Talks covered AI security, the OSPS Baseline, and stabilizing vulnerability data, helping financial institutions build trust and resilience through open source.

Blog AI security Bloomberg CRob Robinson CVE Cybersecurity Financial Services FINOS IBM Jamie Thomas Kusari Linux Foundation Michael Lieberman NVD open source collaboration Open Source Finance Forum Open Source Security OpenSSF OSFF OSPS Baseline Secure Software Development Software Supply Chain Stephen Augustus vulnerability management

OpenSSF Newsletter – October 2025

Discover the latest updates across the OpenSSF community including new learning offerings, AI/ML security advancements, SBOM evolution under the CRA, Scorecard improvements, Sigstore research, upcoming events, and fresh podcast episodes helping secure the future of open source.

Newsletter AI security community events EU Cyber Resilience Act Open Source Security OpenSSF Newsletter OpenSSF projects SBOM Scorecard Secure Software Development sigstore Software Supply Chain Security Tech Talks

A New Course on Secure AI/ML-Driven Software Development

The Open Source Security Foundation (OpenSSF) has launched a new free course, Secure AI/ML-Driven Software Development (LFEL1012), authored by David A. Wheeler. As AI and machine learning become core to modern software development, this course helps developers understand and mitigate the security risks associated with AI code assistants. In just one hour, learners will gain…

Blog AI code assistants AI safety AI security AI/ML course cybersecurity education David A. Wheeler developer best practices LFEL1012 Linux Foundation Machine Learning Open Source Security OpenSSF OpenSSF Learning Secure Coding Secure Software Development Software Security

🎉 Celebrating Five Years of OpenSSF: A Journey Through Open Source Security

August 2025 marks five years since the official formation of the Open Source Security Foundation (OpenSSF). Born out of a critical need to secure the software supply chains and open...

Blog AI security Alpha-Omega C++ Compiler Hardening CVEs Cyber Resilience Act GUAC mentorship MLSecOps Open Source Community Open Source Policy Open Source Security Open Source Security Foundation OpenSSF OSPS Baseline Scorecard Secure Software Development security best practices sigstore SLSA Software Supply Chain

OpenSSF Community Day NA 2025: Call for Proposals Now Open!

Blog AI & ML in Security Cyber Resilience Cybersecurity Open Source Contributors Open Source Event Open Source Governance Open Source Policy Open Source Security Open Source Software Open Source Summit OpenSSF OpenSSF Community Day OpenSSF Events OSS Community OSS Security OSS Security Best Practices Regulatory Compliance Secure Coding Secure Software Development Secure Software Supply Chain Security Awareness Security Collaboration Security in Open Source Software Security Strategies Software Supply Chain Security