Open Source Security Foundation (OpenSSF)
OpenSSF is a community of software developers and security engineers who are working together to secure open source software for the greater public good.
San Francisco, CA
Pinned Repositories
ai-ml-security
Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security
allstar
GitHub App to set and enforce security policies
criticality_score
Gives criticality score for an open source project
foundation
OpenSSF Governance and Legal Docs
package-analysis
Open Source Package Analysis
scorecard
OpenSSF Scorecard - Security health metrics for Open Source
tac
Technical Advisory Council
wg-best-practices-os-developers
The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for open source developers.
wg-securing-critical-projects
Helping allocate resources to secure the critical open source projects we all depend on.
wg-securing-software-repos
OpenSSF Working Group on Securing Software Repositories
Open Source Security Foundation (OpenSSF)'s Repositories
ossf/package-manager-best-practices
Collection of security best practices for package managers.
ossf/great-mfa-project
The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute hardware MFA tokens to critical open source software (OSS) projects.
ossf/gb-planning-committee
The Governing Board Planning Committee guides OpenSSF vision and planning including mission, roadmap, milestones and key metrics for success of the overall organization.
ossf/oss-researcher-vulnerability-guide
ossf/oss-analysis-census2-prototype
Prototype of Census 2 of open source software (NOT MAINTAINED)