msw, 2 months ago to opensource Open Source Security (OpenSSF) and OpenJS Foundations Issue Alert for Social Engineering Takeovers of Open Source Projects XZ Utils cyberattack likely not an isolated incident #OpenSource #FreeSoftware #FOSS #OSS #InfoSec #XZ #OpenJS #OpenSSF #Linux https://openjsf.org/blog/openssf-openjs-alert-social-engineering-takeovers
Open Source Security (OpenSSF) and OpenJS Foundations Issue Alert for Social Engineering Takeovers of Open Source Projects
XZ Utils cyberattack likely not an isolated incident
#OpenSource #FreeSoftware #FOSS #OSS #InfoSec #XZ #OpenJS #OpenSSF #Linux
https://openjsf.org/blog/openssf-openjs-alert-social-engineering-takeovers
msw, 2 months ago Free and Open Source software communities are anything but “fragile” in light of recent failed attacks. They are smart. They are vigilant. They are resilient. But they also need support from institutions given the resources attackers may have. #OpenSource #FreeSoftware #FOSS #OSS #InfoSec #XZ #OpenJS #OpenSSF #Linux #SOSSCommunity
Free and Open Source software communities are anything but “fragile” in light of recent failed attacks.
They are smart. They are vigilant. They are resilient.
But they also need support from institutions given the resources attackers may have.
#OpenSource #FreeSoftware #FOSS #OSS #InfoSec #XZ #OpenJS #OpenSSF #Linux #SOSSCommunity
davelester, 2 months ago to random Good morning from #sosscommunity! Opening keynote: “SBOMs Everywhere: Work in Progress & Challenges Ahead” with some great updates on #SBOM incl the final release tag of #SPDX 3.0! https://github.com/spdx/spdx-3-model/releases/tag/3.0 #ossummit Slide: “Extending SPDX beyond 3.0”
Good morning from #sosscommunity! Opening keynote: “SBOMs Everywhere: Work in Progress & Challenges Ahead” with some great updates on #SBOM incl the final release tag of #SPDX 3.0! https://github.com/spdx/spdx-3-model/releases/tag/3.0 #ossummit
Slide: “Extending SPDX beyond 3.0”
davelester, 2 months ago to random We've split into two tracks during #sosscommunity! Next up: "Driving Security at Scale: Principles for Package Repository Security" -- the framework is available online https://repos.openssf.org/principles-for-package-repository-security #ossummit
We've split into two tracks during #sosscommunity! Next up: "Driving Security at Scale: Principles for Package Repository Security" -- the framework is available online https://repos.openssf.org/principles-for-package-repository-security #ossummit
openssf, 2 months ago to random ⏱️ SOSS Community Day NA & Open Source Summit North America are just around the corner. Here's a sneak peek at the incredible sessions lined up for next week. Mark your calendars and join us for an enlightening experience! https://openssf.org/blog/2024/04/12/sessions-you-wont-want-to-miss-at-soss-community-day-na-and-open-source-summit-north-america-2024/ #SOSSCommunity #OSSummit
⏱️ SOSS Community Day NA & Open Source Summit North America are just around the corner. Here's a sneak peek at the incredible sessions lined up for next week. Mark your calendars and join us for an enlightening experience! https://openssf.org/blog/2024/04/12/sessions-you-wont-want-to-miss-at-soss-community-day-na-and-open-source-summit-north-america-2024/ #SOSSCommunity #OSSummit
davelester, 2 months ago to random Excited for next week's #ossummit in Seattle! Monday's plan: #sosscommunity and #chaosscon. Hallway track on Tuesday. Open to coffee/lunch meet ups - let’s talk OSPOs, developer ecosystems, package managers, or music! 👋 New and existing connections welcome!
Excited for next week's #ossummit in Seattle! Monday's plan: #sosscommunity and #chaosscon. Hallway track on Tuesday.
Open to coffee/lunch meet ups - let’s talk OSPOs, developer ecosystems, package managers, or music! 👋 New and existing connections welcome!