Tag - Compliance and Security

Addressing Cybersecurity Challenges in Open Source Software: What you need to know

Secure Coding Practice – A Developer’s Learning Experience of Developing Secure Software Course

Adopting Sigstore Incrementally

CRob on Software Security Education and SIRTs

Takeaways from the White House Cyber Workforce and Education Summit

Jamie Thomas: What is the OpenSSF

Hendrick and Jarvis Talk Software Security

LEGO and Angel Island

Learn the Principles of DevSecOps in New, Free Training Course

Free Training Course Teaches How to Secure a Software Supply Chain with Sigstore

New Research from Snyk and The Linux Foundation Reveals Significant Security Concerns Resulting from Open Source Software Ubiquity

SBOM – SB Doesn’t Stand for Silver Bullet

ISO establishes SBOM standard for open source development with SPDX

Open Source Software Security: Turning Sand into Concrete

The Linux Foundation and Open Source Software Security Foundation (OpenSSF) Gather Industry and Government Leaders for Open Source Software Security Summit II

Brian Behlendorf Testifies on Open Source Software Security to the US House Committee on Science and Technology

More Time on Innovating, Less Time on Compliance

Secure software supply chains: good practices, at scale

SPDX Becomes Internationally Recognized Standard for Software Bill of Materials

Funded open source security work at the Linux Foundation

What is an SBOM?

SPDX: It’s Already in Use for Global Software Bill of Materials (SBOM) and Supply Chain Security

How LF communities enable security measures required by the US Executive Order on Cybersecurity

Generating a Software Bill of Materials (SBOM) with Open Source Standards and Tooling

Interview with Shuah Khan, Kernel Maintainer & Linux Fellow

How to report security vulnerabilities to the Linux Foundation

Introducing the Open Governance Network Model