https://securityscorecards.dev/
Quickly assess open source projects for risky practices
openssfscorecard
https://www.linuxfoundation.org/blog/openssf-openjs-alert-for-social-engineering-takeovers-of-open-source-projects
The OpenSSF and OpenJS Foundations issue an alert for social engineering takeovers of open source projects, as the XZ Utils cyberattack is likely not an...
open source securityopenssffoundationsissuealert
https://www.linuxfoundation.org/press/linux-foundation-isc2-openssf-collaborate-to-target-secure-code-development
Collaboration Announced to Expand the Depth and Reach of Cybersecurity Training & Certifications
linux foundationopenssfcollaboratetargetsecure
https://www.linuxfoundation.org/press/openssf-membership-exceeds-100-with-many-new-members-dedicated-to-securing-open-source-software
The Open Source Security Foundation (OpenSSF) announced many new members from leading technology firms in sectors that span software development,...
new membersopenssfmembershipmanydedicated
https://scorecard.dev/viewer/?uri=github.com%2FPCRE2Project%2Fpcre2
OpenSSF scorecard report
openssfscorecardreport
https://www.linuxfoundation.org/press/openssf-welcomes-capital-one-as-premier-member
Capital One joins the Open Source Security Foundation (OpenSSF) as a premier member affirming its commitment to strengthening the open source software supply...
capital onepremier memberopenssfwelcomes
https://best.openssf.org/Concise-Guide-for-Developing-More-Secure-Software
This is a concise guide for all software developers for how to create more secure software during development, building, and distribution.
secure softwarebest practicesconciseguidedeveloping
https://www.coalitionforsecureai.org/cosai-featured-on-openssf-podcast/
Oct 15, 2024 - CoSAI Project Governing Board members Dave LaBianca and Jay White were guests on the OpenSSF podcast,
secure aifeaturedopenssfpodcastcoalition
https://www.linuxfoundation.org/press/cisa-dhs-st-and-openssf-announce-global-launch-of-software-supply-chain-open-source-project
Protobom project allows for easy creation and translation of Software Bill of Materials (SBOMs)
cisadhsampopenssfannounce
https://thenewstack.io/openssf-experts-weigh-in-on-cisas-sbom-minimum-elements-update/
Sep 12, 2025 - There’s long been a need to drill further down into exactly what a piece of software is made of. Here's how OpenSSF is approaching it.
openssfexpertsweighsbomminimum
https://openssf.myspreadshop.com/
OpenSSF tall white logo? ⭐ OpenSSF tall white logo ❗ OpenSSF tall white logo
merch storeopenssf
https://www.legitsecurity.com/blog/openssf-scm-best-practices-guide-released-with-contributions-from-legitify
Legit Security | Explore the collaborative effort by OpenSSF and leading security vendors in the release of SCM Best Practices Guide.
best practicesopenssfscmguidereleased
https://scorecard.dev/viewer/?uri=github.com/open-telemetry/opentelemetry-go
OpenSSF scorecard report
openssfscorecardreport
https://www.theregister.com/2025/09/23/openssf_open_source_infrastructure/
Sep 23, 2025 - : Foundations say billions of downloads rely on registries running on fumes – and someone's gotta pay the bills
open sourceopenssfinfrafree
https://www.linuxfoundation.org/press/openssf-celebrates-global-momentum-ai/ml-security-initiatives-and-golden-egg-award-winners-at-community-day-europe
Vortex Project Joins LF AI & Data Foundation
ai mlopenssfcelebratesglobalmomentum
https://www.linuxfoundation.org/press/openssf-announces-13-new-members-committed-to-strengthening-the-security-of-the-open-source-software-supply-chain
The Open Source Security Foundation (OpenSSF) today announced 13 new members from leading financial services, technology, employment, software development,...
new membersopenssfannouncescommittedsecurity
https://www.linuxfoundation.org/press/linux-foundation-and-openssf-release-report-on-the-state-of-education-in-secure-software-development
Findings show nearly one-third of industry professionals are not familiar with secure software development practices
linux foundationopenssfreleasereportstate
https://www.linuxfoundation.org/press/openssf-welcomes-new-members-veteran-cybersecurity-expert-as-general-manager-and-new-funding
The Open Source Security Foundation (OpenSSF) welcomes four new members from leading technology firms: Hitachi, Lockheed Martin, Salesforce, and SAP. The...
new membersopenssfwelcomesveterancybersecurity
https://anchore.com/blog/openssf-sbom-coffee-club-is-exactly-what-you-think-it-is/
Aug 13, 2025 - Join the OpenSSF SBOM Coffee Club every Monday to learn, share, and collaborate on software supply chain security. Open to all, with public meeting invites,...
openssfsbomcoffeeclubexactly
https://best.openssf.org/Compiler-Hardening-Guides/Compiler-Options-Hardening-Guide-for-C-and-C++
The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for open source developers.
compileroptionshardeningguideopenssf
https://www.linuxfoundation.org/press/linux-foundation-and-openssf-release-cybersecurity-skills-framework
May 14, 2025 - New Customizable Global Framework Aligns IT Job Roles with Practical Cybersecurity Skills
linux foundationopenssfreleasecybersecurityskills
https://www.linuxfoundation.org/press/press-release/the-openssf-and-the-linux-foundation-address-software-supply-chain-security-challenges-at-white-house-summit
WASHINGTON (January 13, 2022) Today marks an important moment in the Linux Foundation’s history of engagement with public sector organizations. The White...
software supply chainlinux foundationopenssfaddress
https://openssf.org/technical-initiatives/developer-best-practices/
Providing open source developers with security best practices recommendations and easy ways to learn and apply them.
best practicesopenssfprojectsdeveloper
https://openssf.org/training/
The Open Source Security Foundation (OpenSSF) has developed free courses on the Linux Foundation Education platform for software developers, software...
openssfeducation
https://social.lfx.dev/@openssf
830 Posts, 3 Following, 1.26K Followers · Open Source Security Foundation (OpenSSF) Advancing open source security for all
openssfsociallfxdev
https://duckalignment.academy/guactrustify-building-a-common-supply-chain-knowledge-graph-openssf-community-day/
Sep 17, 2025 - Co-presented with Dejan Bosanac at OpenSSF Community Day Europe 2025.
supply chainknowledge graphguacbuildingcommon
https://openssf.org/resources/publications/secure-open-source-software-vision-brief-2025/
The OpenSSF community remains committed to driving security improvements across the open source software ecosystem. Download the Secure Open Source Software...
openssfvisionbrief
https://www.linuxfoundation.org/press/openssf-and-lf-europe-launch-cra-initiative
Linux Foundation and OpenSSF are excited to announce a global joint-initiative to help prepare maintainers, manufacturers, and open source stewards for the...
linux foundation europeopenssflaunchinitiativeprepare
https://www.linuxfoundation.org/press/openssf-to-support-darpa-on-new-ai-cyber-challenge-aixcc
The Open Source Security Foundation (OpenSSF) announced today at Black Hat 2023 its collaboration with the Defense Advanced Research Projects Agency (DARPA) on...
openssfsupportdarpanewai
https://scorecard.dev/viewer/?uri=github.com/nginx/nginx-gateway-fabric
OpenSSF scorecard report
openssfscorecardreport
https://training.linuxfoundation.org/resources/accelerating-openssf-adoption/
Nov 21, 2025 - Accelerating OpenSSF Adoption: Unlocking Scorecard Insights with a Centralized Dashboard
acceleratingopenssfadoptionunlockingscorecard
https://github.com/ossf
OpenSSF is a community of software developers and security engineers who are working together to secure open source software for the greater public good. -...
open source securityfoundationopenssfgithub
https://www.linuxfoundation.org/press/press-release/linux-foundation-openssf-gather-industry-government-leaders-open-source-software-security-summit
The Linux Foundation and the Open Source Software Security Foundation (OpenSSF) brought together over 90 executives from 37 companies and government leaders...
open source softwarelinux foundationsecurityopenssf
https://openssf.org/blog/2024/02/20/openssf-responds-to-us-cisa-rfi-on-cybersecurity-risk-and-secure-by-design-software/?hsLang=en
openssfrespondsuscisarfi
https://www.linuxfoundation.org/press/openssf-announces-key-membership-growth-and-golden-egg-award-winners-at-open-source-securitycon-north-america
OpenSSF Announces Key Membership Growth and Golden Egg Award Winners at Open Source SecurityCon North America
golden eggaward winnersopenssfannounceskey
https://bsky.app/profile/openssf.org
Open Source Security Foundation (OpenSSF) Together, we're securing the open source ecosystem http://openssf.org #OSSSecurity #OpenSSFCommunity
openssforgbluesky
https://lists.openssf.org/g/openssf-wg-globalcyberpolicy
Global Cyber Policy Working Group
openssfwglistsorg
https://training.linuxfoundation.org/express-learning/securing-projects-with-openssf-scorecard-lfel1006/
Jan 2, 2025 - Create a custom integration plan and learn to incorporate the OpenSSF Scorecard into your software development life cycle.
linux foundationsecuringprojectsopenssfscorecard
https://www.linuxfoundation.org/press/openssf-welcomes-new-members-and-presents-golden-egg-award
OpenSSF Welcomes New Members and Presents Golden Egg Award at OpenSSF Community Days North America
new membersgolden eggopenssfwelcomespresents