Foundation honors community achievements and strategic efforts to secure ML pipeline during community event in Amsterdam AMSTERDAM – OpenSSF Community Day Europe – August 28, 2025 – The Open Source...| Open Source Security Foundation
By Ben Cotton and Dejan Bosanac The superpower of open source is multiple people working together on a common goal. That works for projects, too. GUAC and Trustify are two...| Open Source Security Foundation
| Open Source Security Foundation
The Open Source Security Foundation (OpenSSF) marked a strong presence at two cornerstone cybersecurity events, Black Hat USA 2025 and DEF CON 33, engaging with security leaders, showcasing our initiatives, and fostering collaboration to advance open source security.| openssf.org
The AI wave is here, and it’s only getting bigger. According to a recent report from McKinsey, “over the next three years, 92 percent of companies plan to increase their AI investments.” As this AI wave washes over almost every industry and is integrated deeply and extensively into critical and non-critical operations, it ushers in a pivotal new cybersecurity battleground: securing AI.| Open Source Security Foundation
| Open Source Security Foundation
The Open Source Security Foundation (OpenSSF) serves as the global hub for collaborative work on securing the software supply chain. Whether you’re an open-source maintainer, a security engineer, a student, or someone passionate about public digital infrastructure, OpenSSF invites you to participate. There are no gatekeepers, no matter where you work. This community is open, global, and powered by you.| Open Source Security Foundation
Welcome to the July 2025 edition of the OpenSSF Newsletter! Here’s a roundup of the latest developments, key events, and upcoming opportunities in the Open Source Security community.| openssf.org
OpenSSF Community Day Japan returned to Tokyo for its third consecutive year in 2025, bringing together a diverse group of developers, researchers, government representatives, and industry experts to focus on securing the open source ecosystem.| openssf.org
The EU Cyber Resilience Act (CRA) is reshaping the landscape for open source software. Whether you’re a maintainer, contributor, or vendor, the CRA introduces new expectations—and new responsibilities.| openssf.org