Tag: OpenSSF
Endor Labs Publishes A Report On The Security Of Open Source...
The latest paper from Station 9 provides a thorough review of the difficulties associated with the use of open source software and shows how...
Microsoft’s Open Source Software Security Guidelines To Be Used By OpenSSF
On Wednesday, the Open Source Security Foundation (OpenSSF) announced the adoption of Secure Supply Chain Consumption Framework (S2C2F), a framework for using open source...
OpenSSF Launches npm Best Practices
The npm Best Practices Guide was made available by the Open Source Security Foundation (OpenSSF) to assist JavaScript and TypeScript developers in lowering the...
Capital One Joins The Open Source Security Foundation
Capital One pledges to boost the open source software supply chain by becoming a flagship member of the Open Source Security Foundation (OpenSSF). The...
Survey Reveals The Depth Of Open Source Software Insecurity
According to a survey conducted by Snyk and the Linux Foundation and published today, less than half of respondents (49%) work for organisations that...
OpenSSF Says It Will Cost $147.9M To Secure Open Source Software
Multiple vulnerabilities in open source software have been exploited in recent years, putting enterprises of all kinds at risk. Vulnerabilities in software components such...
Package Analysis Examines Packages In Open Source Repositories In Real Time
The Open Source Security Foundation (OpenSSF) has released a beta version of a new tool that can do dynamic analysis of all packages published...
Wipro Joins The Governing Board Of The Open Source Security Foundation
Wipro Limited has joined the governing board of the Open Source Security Foundation (OpenSSF) to help combat the growing danger to the software supply...
Open Source Security Foundation Advances Key Initiatives
The Open Source Security Foundation (OpenSSF) a cross-industry organization hosted at the Linux Foundation, today announced 20 new organizations have joined OpenSSF to help...
The Linux Foundation Releases The State Of SBOM And Cybersecurity Readiness...
The Linux Foundation, in partnership with OpenSSF, SPDX, and OpenChain, today announced the availability of the first in a series of research projects to...