Name: Open Source Security Foundation (OpenSSF)
Type: Organization
Bio: OpenSSF is a community of software developers and security engineers who are working together to secure open source software for the greater public good.
Twitter: openssf
Location: San Francisco, CA
Blog: https://openssf.org
Open Source Security Foundation (OpenSSF)'s Projects
Github configuration
Potential WG on Artificial Intelligence and Machine Learning (AI/ML)
GitHub App to set and enforce security policies
Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
OpenSSF Artwork
📜Automated review of open source software projects
Gives criticality score for an open source project
Evangelizing the mission and work of the OpenSSF and building strong community outreach around end-users, open-source maintainers, and contributors.
OpenSSF Diagrammers Society
disclosure-check
OpenSSF Education SIG
OpenSSF Governance and Legal Docs
Fuzz Introspector -- introspect, extend and optimise fuzzers
The Governing Board Planning Committee guides OpenSSF vision and planning including mission, roadmap, milestones and key metrics for success of the overall organization.
GitHub lacks an API for listing an org's repos' access for non-team-based individuals, so, scrape it.
Governance Committee
The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute hardware MFA tokens to critical open source software (OSS) projects.
A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerability (OSV) format.
open-auto-vuln-disclose
Vuln Disclosure WG's new SIG
Prototype of Census 2 of open source software (NOT MAINTAINED)
Archive of various open source security compromises
A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disclosure notifications.