loader from loading.io

Open Source Security

Open Source Security is a media project to help showcase and educate on open source security. Our goal is to give the community a platform educate both developers and users on how open source security works. There’s a lot of good work happening that doesn’t get attention because there’s no marketing department behind it, they don’t have a developer relations team posting on LinkedIn every two hours. Let’s focus on those people and teams then learn what they do and how they do it. The goal is to hear from the people doing the work, they know what’s up, they have a lot to teach us. We just have to listen.

info_outline Linux Vendor Firmware Service with Richard Hughes 11/17/2025
info_outline NPM supply chain attacks with Charlie Eriksen 11/09/2025
info_outline Detecting XZ in Debian with Otto Kekäläinen 11/02/2025
info_outline Eclipse Foundation SBOMs with Mikael Barbero 10/20/2025
info_outline Actually finding vulnerabilities using AI with Joshua Rogers 10/13/2025
info_outline Sustaining Package Repositories with Brian Fox 10/06/2025
info_outline Arch Linux Security with Foxboron and Anthraxx 09/29/2025
info_outline OpenSSL with Hana Andersen and Anton Arapov 09/22/2025
info_outline The Python Software Foundation with Deb Nicholson 09/15/2025
info_outline Using Mercator to map assets with Didier Barzin 09/08/2025
info_outline Talos Linux security with Andrey Smirnov 09/01/2025
info_outline Discussing the Open Source, Open Threats? paper with Behzad and Ali 08/25/2025
info_outline crates.io trusted publishing with Tobias Bieniek 08/18/2025
info_outline CVE update with Patrick Garrity 08/11/2025
info_outline GCVE with Cédric Bonhomme and Alexandre Dulaunoy 08/04/2025
info_outline EU Regulations will change everything with Daniel Thompson 07/28/2025
info_outline Open source microprocessors with Jan Pleskac 07/21/2025
info_outline Package URLs with Philippe Ombredanne 06/23/2025
info_outline Hobbyist Maintainers with Thomas DePierre 06/16/2025
info_outline STIG automation with Aaron Lippold 06/09/2025
info_outline Ecosyste.ms with Andrew Nesbitt 06/02/2025
info_outline Curl vs AI with Daniel Stenberg 05/26/2025
info_outline Repository signing with Kairo De Araujo 05/19/2025
info_outline Securing GitHub Actions with William Woodruff 05/12/2025
info_outline Embedded Security with Paul Asadoorian 05/05/2025
info_outline tj-actions with Endor Lab's Dimitri Stiliadis 04/28/2025
info_outline Syft, Grype, and Grant with Alan Pope 04/21/2025
info_outline CVE for EOL with Aaron Frost 04/14/2025
info_outline cargo-semver-checks with Predrag Gruevski 04/07/2025
info_outline Distributed CI and Git with Lars Wirzenius 03/31/2025
 
share