Skip to main content

📣 Join us for SOSS Fusion! October 22-23, 2024 · Atlanta, Georgia · #SOSSFUSION - REGISTER NOW

search

Together we’re securing open source software for the public good.

Join the Community

The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public good.

Collaborate on capabilities and best practices that secure open source software.

Participate in the latest community conversations and engage with experts.

Take free courses on secure coding practices as part of our certificate program.

Explore our helpful security guides to help secure your project from the start.

October 22-23, 2024
Atlanta, Georgia
#SOSSFusion

RegisterSponsorSubmit to Speak

What’s in the SOSS? Podcast

Read the Latest Reports From OpenSSF

Plan for Improving Software Developer Security Education

2023annualreportblog

2023 Annual Report

Cybersecurity in Energy Infrastructure Whitepaper

Recent Blog Posts

RecentSecurityEventsBlogOSS Security Adventure: Recap of Recent Security-Focused Events Featuring OpenSSF
August 6, 2024

OSS Security Adventure: Recap of Recent Security-Focused Events Featuring OpenSSF

In July, Open Source Security Foundation (OpenSSF) participated in three key events that highlight its dedication to enhancing open source software security for the global public good: the United Nations…
OpenSSF
New Guide for Package Repositories to Adopt Trusted PublishersBlogGuest BlogNew Guide for Package Repositories to Adopt Trusted Publishers
August 5, 2024

New Guide for Package Repositories to Adopt Trusted Publishers

By Seth Michael Larson The Open Source Security Foundation (OpenSSF) Securing Software Repositories Working Group (WG) has just released a new guide for maintainers of open source software repositories. The…
OpenSSF
BlogGuest BlogNeo Malware: Malicious Open Source Packages
July 31, 2024

Neo Malware: Malicious Open Source Packages

Malware is at the top of the list among things that keep security and development organizations on edge. 
OpenSSF
How to Make Programming Language Package Repositories More SecureBlogGuest BlogHow to Make Programming Language Package Repositories More Secure
July 31, 2024

How to Make Programming Language Package Repositories More Secure

Open source package repositories (like npm, PyPI, RubyGems, and others) serve out billions of packages per day. Most of the software we all use includes packages from these repositories, making…
OpenSSF

Open source software is pervasive in data centers, consumer devices, and applications. Securing open source software requires fostering collaboration, establishing best practices, and developing innovative solutions.

Join the growing list of organizations supporting the advancement of securing open source technology and funding the development and adoption of OpenSSF initiatives.

Explore Membership in OpenSSF

Mastodon

We envision a future where OSS is universally trusted, secure, and reliable. Join us in making open source more secure.

Get Involved
Close Menu