📣 The OpenSSF 2024 Annual Report is now LIVE! Read the blog and the report as we celebrate this important milestone with our amazing community. We’re excited to continue our journey toward a more secure future together!.👉 #OSSSecurity #Wrapped2024

🌏 #India is rapidly climbing the charts in OSS contributions. But as @ramiyengar notes, “They were doing all of this with zero awareness of security.”. Learn how OpenSSF's building India's #OSSSecurity community: Join us:

🛡️ Software is about to be regulated worldwide. Are you ready?. To help #OSS contributors navigate what's coming, the #OpenSSF has released a CRA Brief Guide for OSS Developers. 📘 Learn more: 📘 Read the guide:

Want to learn more or get involved? Join us at OpenSSF Community Day India on August 4 in Hyderabad — a full day dedicated to open source security collaboration and community building 🇮🇳:

New Podcast!.Ram Iyengar joins CRob on What’s in the SOSS? to talk about building India’s #OpenSSFCommunity.

📣 OpenSSF Community Day NA Recap is now live!. 💬 Security is a team effort. #OpenSSFCommunity Day NA 2025 brought together devs, engineers & advocates to shape the future of secure OSS. Catch the recap, watch recordings & browse slides:

🌐 June was packed with OpenSSF events and community momentum — and we’re excited to share the recap from #OpenSSFCommunity Day Japan 2025, held in Tokyo for the third year in a row!. 📚 Explore the recap and catch up on everything:

🚨 Last call! The CFP for Open Source #SecurityCon 2025 closes today, June 30 at 11:59 PM EDT. Got insights on secure development, OSS governance, or AI in security? We want to hear from you. 🛡️ Learn more:.🔗

Security is everyone’s job. Watch the on-demand webinar Cybersecurity Skills: A Framework That Works and learn how teams are scaling security education across roles. 🎥 Webinar: 📖 Blog: #OpenSSF

From bold ideas to real impact — global experts gathered at #UNOpenSourceWeek to secure the open source supply chain, explore GenAI risks, and improve project sustainability through hands-on hackathons. Catch the highlights 👉

Marcela (Intel Labs) & Trishank (Datadog) talk about harnessing in-toto attestations to meet modern security & compliance needs. Learn how their next-gen policy framework makes supply chain metadata more intuitive, flexible, and audit-ready. #OSSummit #OpenSSFCommunity

Brandt Keller from Defense Unicorns talks about integrating OpenSSF projects #Zarf and #GUAC to streamline #SBOM generation and delivery. Learn how this powerful combo enhances supply chain security across both connected and airgapped environments. #OSSummit #OpenSSFCommunity

Allen Shearin & Ian Dunbar-Hall from Lockheed Martin talk about #Bomctl, a new OpenSSF sandbox project making #SBOM management easier. Learn how this format-agnostic tool bridges generation, analysis, and automation—powered by #Protobom. #OSSummit #OpenSSFCommunity

Katherine Druckman from @Intel talks about navigating security in generative AI development. Learn how collaborative efforts—like the OpenSSF AI/ML WG & OPEA—are addressing emerging threats & shaping practical security approaches for AI applications. #OSSummit #OpenSSFCommunity

Ram Iyengar talks about the highs and hurdles of evangelizing open source security across India. From flight delays to shifting mindsets, it’s a candid journey through the emotions of inspiring the world’s largest developer population to build more securely. #OpenSSFCommunity

Britney Blodget (@Docker) talks about fixing container security at the source—by embedding security directly into Docker Hub. Learn how Docker is enabling secure supply chains from the very first building block through OpenSSF standards and tools. #OSSummit #OpenSSFCommunity

Daniel Appelquist from Samsung talks about SWAG—Secure Web Application Guidelines—and how it brings practical security best practices to web developers. Learn how this work, developed with #OpenSSF, helps strengthen the web ecosystem. #OSSummit #OpenSSFCommunity

Daniel Moch (@LockheedMartin) talks about public sector supply chain challenges. Learn how OpenSSF and the open source community are teaming up to tackle these complex issues together through projects such as #SLSA. #OSSummit #OpenSSFCommunity

François Proulx from talks about uncovering 0-days in CI/CD pipelines and predicting the next XZ-like supply chain attacks. #OSSummit #OpenSSFCommunity

Abdel Sy Fane & Francis Ofungwu from DevSecFlow talk about how the CNAMM helps organizations measure and improve cloud native security. Learn how this community-driven framework enables evidence-based progress across key business functions. #OpenSSFCommunity

Eve M. & Hayden Blauzvern from Google talk about trends in the #Sigstore ecosystem. Learn how open source communities are using Sigstore for digital signing, what Rekor’s transparency log reveals, and how this data helps strengthen supply chain security. #OpenSSFCommunity