Cloud Native Luchador to the rescue, fighting malware at #KubeCon. 😹 We’re all potential security superheroes! baseline.openssf.org
November 11, 2025 at 3:02 PM
Cloud Native Luchador to the rescue, fighting malware at #KubeCon. 😹 We’re all potential security superheroes! baseline.openssf.org
Starting to talk security. Supply chain. Talking OpenSSF. OSTIF for security audits of CNCF projects. Audits are good. Glad to see it's getting love in the keynotes.
November 11, 2025 at 2:41 PM
Starting to talk security. Supply chain. Talking OpenSSF. OSTIF for security audits of CNCF projects. Audits are good. Glad to see it's getting love in the keynotes.
Keynotes are happening NOW! Grab your coffee and join us in Building B, Level 1, Exhibit Hall B2 for an opening talk from OpenSSF and Carabiner Systems on Supply Chain Reaction! events.linuxfoundation.org/kubecon-clou...
Schedule | LF Events
View the KubeCon + CloudNativeCon North America 2025 Schedule & Directory.
events.linuxfoundation.org
November 11, 2025 at 2:03 PM
Keynotes are happening NOW! Grab your coffee and join us in Building B, Level 1, Exhibit Hall B2 for an opening talk from OpenSSF and Carabiner Systems on Supply Chain Reaction! events.linuxfoundation.org/kubecon-clou...
Keynotes are happening NOW! Grab your coffee and join us in Building B, Level 1, Exhibit Hall B2 for an opening talk from OpenSSF and Carabiner Systems on Supply Chain Reaction! events.linuxfoundation.org/kubecon-clou...
Schedule | LF Events
View the KubeCon + CloudNativeCon North America 2025 Schedule & Directory.
events.linuxfoundation.org
November 11, 2025 at 2:03 PM
Keynotes are happening NOW! Grab your coffee and join us in Building B, Level 1, Exhibit Hall B2 for an opening talk from OpenSSF and Carabiner Systems on Supply Chain Reaction! events.linuxfoundation.org/kubecon-clou...
Feed: "Open Source Security Foundation"
By: OpenSSF on Monday, November 10, 2025
By: OpenSSF on Monday, November 10, 2025
OpenSSF Announces Key Membership Growth and Golden Egg Award Winners at Open Source SecurityCon North America
The Open Source Security Foundation (OpenSSF) welcomes Target Corporation and Thread AI as new general members, OSTIF as an upgraded member, and celebrates Golden Egg Award winners for their leadershi...
openssf.org
November 11, 2025 at 1:02 PM
Feed: "Open Source Security Foundation"
By: OpenSSF on Monday, November 10, 2025
By: OpenSSF on Monday, November 10, 2025
OpenSSF Welcomes New Members and Honors Golden Egg Award Winners at SecurityCon#USA#Atlanta#OpenSSF#Golden_Egg_Award#Open_Source_Security
OpenSSF Welcomes New Members and Honors Golden Egg Award Winners at SecurityCon
At Open Source SecurityCon, OpenSSF announces exciting new memberships and celebrates the Golden Egg Award winners for their contributions to open source security.
third-news.com
November 10, 2025 at 2:55 PM
OpenSSF Welcomes New Members and Honors Golden Egg Award Winners at SecurityCon#USA#Atlanta#OpenSSF#Golden_Egg_Award#Open_Source_Security
Feed: "Open Source Security Foundation"
By: OpenSSF on Sunday, November 9, 2025
By: OpenSSF on Sunday, November 9, 2025
Building Security in Open Source for Financial Services: OpenSSF at Open Source Finance Forum (OSFF) NYC
At the Open Source Finance Forum (OSFF) NYC, OpenSSF showcased how open source collaboration strengthens cybersecurity in financial services. From AI model signing to the OSPS Baseline and CVE stabili...
openssf.org
November 10, 2025 at 11:31 AM
Feed: "Open Source Security Foundation"
By: OpenSSF on Sunday, November 9, 2025
By: OpenSSF on Sunday, November 9, 2025
Listened to What's in the SOSS? An OpenSSF Podcast Post details
> What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure […]
> What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure […]
Original post on jvt.me
www.jvt.me
November 5, 2025 at 7:04 PM
Listened to What's in the SOSS? An OpenSSF Podcast Post details
> What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure […]
> What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure […]
Feed: "Open Source Security Foundation"
By: OpenSSF on Tuesday, November 4, 2025
By: OpenSSF on Tuesday, November 4, 2025
What’s in the SOSS? Podcast #44 – S2E21 A Deep Dive into the Open Source Project Security (OSPS) Baseline
CRob, Ben Cotton, and Eddie Knight unpack the OSPS Baseline—tiers, docs, tooling, and a GUAC case study—to boost confidence in open source security.
openssf.org
November 4, 2025 at 11:11 PM
Feed: "Open Source Security Foundation"
By: OpenSSF on Tuesday, November 4, 2025
By: OpenSSF on Tuesday, November 4, 2025
How can open source maintainers prove their project’s security posture?
💬 Learn about the OSPS Baseline in our latest What’s in the SOSS? discussion with Ben Cotton & Eddie Knight.
openssf.org/podcast/2025...
#OpenSSF
💬 Learn about the OSPS Baseline in our latest What’s in the SOSS? discussion with Ben Cotton & Eddie Knight.
openssf.org/podcast/2025...
#OpenSSF
November 4, 2025 at 3:10 PM
How can open source maintainers prove their project’s security posture?
💬 Learn about the OSPS Baseline in our latest What’s in the SOSS? discussion with Ben Cotton & Eddie Knight.
openssf.org/podcast/2025...
#OpenSSF
💬 Learn about the OSPS Baseline in our latest What’s in the SOSS? discussion with Ben Cotton & Eddie Knight.
openssf.org/podcast/2025...
#OpenSSF
OpenSSF Community Day Korea
🗓️ November 4, 2025
📍 Seoul, South Korea
events.linuxfoundation.org/openssf-comm...
@openssf.org
🗓️ November 4, 2025
📍 Seoul, South Korea
events.linuxfoundation.org/openssf-comm...
@openssf.org
OpenSSF Community Day Korea | LF Events
OpenSSF Community Days unite the open source security community to collaborate on securing OSS development, maintenance, and consumption in a regional, innovative setting.
events.linuxfoundation.org
November 2, 2025 at 10:43 AM
OpenSSF Community Day Korea
🗓️ November 4, 2025
📍 Seoul, South Korea
events.linuxfoundation.org/openssf-comm...
@openssf.org
🗓️ November 4, 2025
📍 Seoul, South Korea
events.linuxfoundation.org/openssf-comm...
@openssf.org
ICYMI 👻 Attackers are using AI… and it’s spooky.
Great insights from Hugo Huang + Canonical on why securing AI is the next battleground and how open source helps.
Read more 👉 openssf.org/blog/2025/08...
#OpenSSF
Great insights from Hugo Huang + Canonical on why securing AI is the next battleground and how open source helps.
Read more 👉 openssf.org/blog/2025/08...
#OpenSSF
October 31, 2025 at 4:38 PM
ICYMI 👻 Attackers are using AI… and it’s spooky.
Great insights from Hugo Huang + Canonical on why securing AI is the next battleground and how open source helps.
Read more 👉 openssf.org/blog/2025/08...
#OpenSSF
Great insights from Hugo Huang + Canonical on why securing AI is the next battleground and how open source helps.
Read more 👉 openssf.org/blog/2025/08...
#OpenSSF
Stay informed in the fast-moving world of open source security. The October #OpenSSF Newsletter covers AI security, SBOM evolution, OpenSSF Scorecard improvements, and upcoming events built for developers.
Read the full update: openssf.org/newsletter/2...
Read the full update: openssf.org/newsletter/2...
October 29, 2025 at 8:26 PM
Stay informed in the fast-moving world of open source security. The October #OpenSSF Newsletter covers AI security, SBOM evolution, OpenSSF Scorecard improvements, and upcoming events built for developers.
Read the full update: openssf.org/newsletter/2...
Read the full update: openssf.org/newsletter/2...
CRob Robinson (OpenSSF) at #LFEuropeRoadshow 🇧🇪 shared how OpenSSF’s Global Cyber Policy WG helps the OSS community prepare for the EU CRA through guidance, baselines & research.
October 29, 2025 at 2:09 PM
CRob Robinson (OpenSSF) at #LFEuropeRoadshow 🇧🇪 shared how OpenSSF’s Global Cyber Policy WG helps the OSS community prepare for the EU CRA through guidance, baselines & research.
PyPI serves billions of requests daily- but sustaining it isn’t free. The PSF joined the OpenSSF & others in calling for organizations to invest in sustainable open infrastructure. Learn what this means for #PyPI, the PSF, & how our community can pitch in:
Open Infrastructure is Not Free: PyPI, the Python Software Foundation, and Sustainability
In September, the Python Software Foundation (PSF) co-signed the Open Infrastructure is Not Free: A Joint Statement on Sustainable Stewardship Letter published by the Open Source Security Foundation (OpenSSF) as a steward of the Python Package Index (PyPI). As a follow up, I would like to share a bit more about the concerns expressed in this letter as they relate to our community and the PSF.
pyfound.blogspot.com
October 29, 2025 at 1:11 PM
PyPI serves billions of requests daily- but sustaining it isn’t free. The PSF joined the OpenSSF & others in calling for organizations to invest in sustainable open infrastructure. Learn what this means for #PyPI, the PSF, & how our community can pitch in:
Thank you to the @openssf.org - Platinum Sponsor of the #LFEuropeRoadshow 🇧🇪!
Leading today’s cybersecurity track, OpenSSF helps unpack the Cyber Resilience Act, tackle compliance challenges & strengthen open source security across Europe. 💙
Leading today’s cybersecurity track, OpenSSF helps unpack the Cyber Resilience Act, tackle compliance challenges & strengthen open source security across Europe. 💙
October 29, 2025 at 9:19 AM
Thank you to the @openssf.org - Platinum Sponsor of the #LFEuropeRoadshow 🇧🇪!
Leading today’s cybersecurity track, OpenSSF helps unpack the Cyber Resilience Act, tackle compliance challenges & strengthen open source security across Europe. 💙
Leading today’s cybersecurity track, OpenSSF helps unpack the Cyber Resilience Act, tackle compliance challenges & strengthen open source security across Europe. 💙
📣 Our next Tech Talk is around the corner. Hear from experts from Defense Unicorns, Boeing, and Sonatype as they talk about how OpenSSF project #Zarf simplifies software delivery in disconnected or semi-connected environments.
📅 Sign-up now: openssf.org/resources/te...
#openssf
📅 Sign-up now: openssf.org/resources/te...
#openssf
October 27, 2025 at 8:25 PM
📣 Our next Tech Talk is around the corner. Hear from experts from Defense Unicorns, Boeing, and Sonatype as they talk about how OpenSSF project #Zarf simplifies software delivery in disconnected or semi-connected environments.
📅 Sign-up now: openssf.org/resources/te...
#openssf
📅 Sign-up now: openssf.org/resources/te...
#openssf
Quantum technologies are poised to transform industries, unlocking capabilities far beyond what’s possible today.
As part of the European Open Source Security Forum with @openssf, we will host a panel on open source's role in a quantum-secure future.
Register HERE: www.ceps.eu/ceps-events/...
As part of the European Open Source Security Forum with @openssf, we will host a panel on open source's role in a quantum-secure future.
Register HERE: www.ceps.eu/ceps-events/...
October 24, 2025 at 8:10 AM
Quantum technologies are poised to transform industries, unlocking capabilities far beyond what’s possible today.
As part of the European Open Source Security Forum with @openssf, we will host a panel on open source's role in a quantum-secure future.
Register HERE: www.ceps.eu/ceps-events/...
As part of the European Open Source Security Forum with @openssf, we will host a panel on open source's role in a quantum-secure future.
Register HERE: www.ceps.eu/ceps-events/...
To demonstrate SLSA from commit to end-user binary verification, we leverage a couple of AMPEL's features interacting with various OpenSSF projects: VSA generation, various collectors to read from commit notes, OCI registries and files...
October 23, 2025 at 2:57 PM
To demonstrate SLSA from commit to end-user binary verification, we leverage a couple of AMPEL's features interacting with various OpenSSF projects: VSA generation, various collectors to read from commit notes, OCI registries and files...
Listened to What's in the SOSS? An OpenSSF Podcast Post details
> What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure […]
> What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure […]
Original post on jvt.me
www.jvt.me
October 23, 2025 at 12:09 PM
Listened to What's in the SOSS? An OpenSSF Podcast Post details
> What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure […]
> What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure […]
Happy to read the latest #openbao Roadmap updat. Great things to come!
https://openbao.org/blog/roadmap-2.0/
#oss #openssf #security
https://openbao.org/blog/roadmap-2.0/
#oss #openssf #security
OpenBao's Roadmap and Community Direction for 2025-2026 | OpenBao
An explanation of OpenBao's proposed roadmap and direction for the community for 2025-2026.
openbao.org
October 22, 2025 at 7:12 PM
Happy to read the latest #openbao Roadmap updat. Great things to come!
https://openbao.org/blog/roadmap-2.0/
#oss #openssf #security
https://openbao.org/blog/roadmap-2.0/
#oss #openssf #security
The global push for #SBOM standards is reshaping how we approach cybersecurity and transparency. 🌍
Explore how the EU #CRA, CISA, and @OpenSSF efforts are aligning global software supply chain security.
openssf.org/blog/2025/10...
Explore how the EU #CRA, CISA, and @OpenSSF efforts are aligning global software supply chain security.
openssf.org/blog/2025/10...
October 22, 2025 at 4:51 PM
The global push for #SBOM standards is reshaping how we approach cybersecurity and transparency. 🌍
Explore how the EU #CRA, CISA, and @OpenSSF efforts are aligning global software supply chain security.
openssf.org/blog/2025/10...
Explore how the EU #CRA, CISA, and @OpenSSF efforts are aligning global software supply chain security.
openssf.org/blog/2025/10...
💚 #OSS thrives when communities are welcoming and inclusive.
Listen to the latest GR-OSS OUT Podcast from G-Research, Tabatha DiDomenico & Stacey Potter from OpenSSF
🎧 www.youtube.com/watch?v=Us_M...
Listen to the latest GR-OSS OUT Podcast from G-Research, Tabatha DiDomenico & Stacey Potter from OpenSSF
🎧 www.youtube.com/watch?v=Us_M...
GR-OSS OUT Podcast Episode 15: Stacey Potter - Building Welcoming Communities
YouTube video by GR Open Source Software
www.youtube.com
October 17, 2025 at 2:24 PM
💚 #OSS thrives when communities are welcoming and inclusive.
Listen to the latest GR-OSS OUT Podcast from G-Research, Tabatha DiDomenico & Stacey Potter from OpenSSF
🎧 www.youtube.com/watch?v=Us_M...
Listen to the latest GR-OSS OUT Podcast from G-Research, Tabatha DiDomenico & Stacey Potter from OpenSSF
🎧 www.youtube.com/watch?v=Us_M...
Feed: "Open Source Security Foundation"
By: OpenSSF on Thursday, October 16, 2025
By: OpenSSF on Thursday, October 16, 2025
What’s in the SOSS? Podcast #42 – S2E19 New Education Course: Secure AI/ML-Driven Software Development (LFEL1012) with David A. Wheeler
openssf.org
October 16, 2025 at 6:09 PM
Feed: "Open Source Security Foundation"
By: OpenSSF on Thursday, October 16, 2025
By: OpenSSF on Thursday, October 16, 2025
42 is the answer to life, the universe… and everything.
For #OpenSSF, it’s the answer to secure AI development.
Listen to What’s in the SOSS? Episode #42 ft. David A. Wheeler + the launch of LFEL1012
🎧 Listen → openssf.org/podcast/2025...
🎓 Enroll → training.linuxfoundation.org/express-lear...
For #OpenSSF, it’s the answer to secure AI development.
Listen to What’s in the SOSS? Episode #42 ft. David A. Wheeler + the launch of LFEL1012
🎧 Listen → openssf.org/podcast/2025...
🎓 Enroll → training.linuxfoundation.org/express-lear...
October 16, 2025 at 1:02 PM
42 is the answer to life, the universe… and everything.
For #OpenSSF, it’s the answer to secure AI development.
Listen to What’s in the SOSS? Episode #42 ft. David A. Wheeler + the launch of LFEL1012
🎧 Listen → openssf.org/podcast/2025...
🎓 Enroll → training.linuxfoundation.org/express-lear...
For #OpenSSF, it’s the answer to secure AI development.
Listen to What’s in the SOSS? Episode #42 ft. David A. Wheeler + the launch of LFEL1012
🎧 Listen → openssf.org/podcast/2025...
🎓 Enroll → training.linuxfoundation.org/express-lear...