[go: nahoru, domu]
Skip to main content
search

📣 SOSS Fusion 2024 Call for Proposals is Now Open

Together we’re securing open source software for the public good.

Join the Community
The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public good.

Collaborate on capabilities and best practices that secure open source software.

Participate in the latest community conversations and engage with experts.

Take free courses on secure coding practices as part of our certificate program.

Explore our helpful security guides to help secure your project from the start.

October 22-23, 2024
Atlanta, Georgia
#SOSSFusionRegisterSponsorSubmit to Speak
pocast_soc

Get a taste for all ingredients that make up secure open source software (SOSS) and explore the latest trends at the intersection of AI and security, vulnerability management, and threat assessments.

Listen Now
Read the Latest Reports From OpenSSF

Plan for Improving Software Developer Security Education

2023annualreportblog

2023 Annual Report

Cybersecurity in Energy Infrastructure Whitepaper

Recent Blog Posts
ImprovingOpenSSFScorecardScoresBlogGuest BlogImproving OpenSSF Scorecard Scores: StepSecurity Automation for Four Key Checks
June 28, 2024

Improving OpenSSF Scorecard Scores: StepSecurity Automation for Four Key Checks

Implementing security best practices is essential for open source maintainers to ensure their projects are secure and free from vulnerabilities. However, many maintainers find this task complex and time-consuming when…
OpenSSF
SBOMit and AttestationsBlogA Deep Dive into SBOMit and Attestations
June 26, 2024

A Deep Dive into SBOMit and Attestations

December 2023 saw the launch of SBOMit, a project that helps enhance the reliability and integrity of SBOMs (Software Bills of Materials). It does so by including, along with SBOMs,…
OpenSSF
AnOpenSourceApproachBlogGuest BlogAn Open Source Approach to Threat Mitigation in AWS
June 21, 2024

An Open Source Approach to Threat Mitigation in AWS

The security of cloud environments is a top priority for organisations worldwide. According to research by Omdia, supporting cloud and digital transformation projects is one of the top three priorities…
OpenSSF
KnowYourRegularExpressionsBlogKnow Your Regular Expressions: Securing Input Validation Across Languages
June 18, 2024

Know Your Regular Expressions: Securing Input Validation Across Languages

The Open Source Security Foundation (OpenSSF) Best Practices Working Group (WG) has just released a short guide, Correctly Using Regular Expressions for Secure Input Validation! Here’s why it’s important.
OpenSSF

Open source software is pervasive in data centers, consumer devices, and applications. Securing open source software requires fostering collaboration, establishing best practices, and developing innovative solutions.

Join the growing list of organizations supporting the advancement of securing open source technology and funding the development and adoption of OpenSSF initiatives.

Explore Membership in OpenSSF

Mastodon

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get Involved
Close Menu