Show Your Support: This site is primarily supported by advertisements. Ads are what have allowed this site to be maintained on a daily basis for the past 18+ years. We do our best to ensure only clean, relevant ads are shown, when any nasty ads are detected, we work to remove them ASAP. If you would like to view the site without ads while still supporting our work, please consider our ad-free Phoronix Premium.
OpenSSF Launches To Improve Open-Source Software Security
The OpenSSF "combines efforts from the Core Infrastructure Initiative, GitHub’s Open Source Security Coalition and other open source security work from founding governing board members GitHub, Google, IBM, JPMorgan Chase, Microsoft, NCC Group, OWASP Foundation and Red Hat, among others. Additional founding members include ElevenPaths, GitLab, HackerOne, Intel, Okta, Purdue, SAFECode, StackHawk, Trail of Bits, Uber and VMware."
This is intended to be a transparent organization and one fostering collaboration among vendors for improving security.
The initial OpenSSF Technical Advisory Council is backed by stakeholders from GitHub, Google, JP Morgan Chase, IBM, Red Hat, Microsoft, and NCC Group. They will be working on enhancing security tooling, security best practices, identifying threats, securing critical projects, developer identity verification, and similar initiatives.
More details on this new security project via OpenSSF.org.