🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

[Blog/Podcast] Thinking Elixir 245 - Supply Chain Security and SBoMs elixirforum.com/t/70023 #ElixirLang #WeBeamTogether #MyElixirStatus

🎧Alistair and Jonatan Männchen joined the ThinkingElixir Podcast to dive into supply-chain security, SBoMs, and Jonatan’s role as the Foundation’s Chief Information Security Officer. What does this mean for the community? youtu.be/jYkV9n4WW-Y?t=… #WeBeamTogether #MyElixirStatus

📢Big news! The EEF Security WG has launched the Supply Chain Security & Compliance Initiative! 🔒This initiative is focused on enhancing security and compliance across the BEAM ecosystem. All work is guided and reviewed by the WG and the EEF CISO. security.erlef.org/aegis/

News includes Phoenix adding DaisyUI, Erlang/OTP 28.0-rc2 with priority messages, LiveViewPortal for embedding @ElixirPhoenix in any website, upcoming Elixir improvements to 2x dependency compilation speed, and more! @ElixirLang #ElixirLang Erlang Ecosystem Foundation youtube.com/watch?v=l-Cygz…

🔐 Big news from the #Gleam community! The EEF Security Working Group helped Gleam Language include Build SBoMs and SLSA build provenance for all release artifacts and Docker images. This means greater visibility into dependencies and stronger software supply chain security. 💪

BREAKING. From a reliable source. MITRE support for the CVE program is due to expire tomorrow. The attached letter was sent out to CVE Board Members.

📢 Why did we launch the Supply Chain Security & Compliance Initiative (ÆGIS)? Because we believe a safer BEAM ecosystem benefits us all. Here’s what we’re aiming for: 🔒 Elevate ecosystem-wide security ✅ Streamline compliance readiness 🤝 Foster trust and transparency 🌍

💫Big news! Just released: a GitHub Action to submit Elixir/Mix dependencies via GitHub's Dependency Submission API. ✅Perfect for unlocking security alerts, dependency graphs, and Dependabot Security updates! Check it out: github.com/erlef/mix-depe… #Elixirlang

📢 Why did we launch the Supply Chain Security & Compliance Initiative (ÆGIS)? Because a safer BEAM ecosystem benefits us all. Here’s what we’re working toward: 🛡️ Empower continuous vulnerability management 🔧 Support sustainable maintenance 🔗 Enhance embedded & enterprise

Erlang Ecosystem Foundation is now a CVE Numbering Authority (CNA) assigning CVE IDs for vulnerabilities in active packages on Hex.pm + projects on GitHub under elixir-lang, erlang, erlef-cna, erlef, & gleam-lang cve.org/Media/News/ite… #cve CVE Erlang Ecosystem Foundation

🚨 Big news! We’ve officially joined the CVE® Program as an authorized CVE Numbering Authority (CNA)! This means we can now assign CVE IDs to publicly disclosed cybersecurity vulnerabilities in our defined scope, helping improve security 🔐 and transparency 🔎 in the broader

✨Thanks to everyone who joined our talk at ElixirConf Europe! We loved sharing everything we’ve been working on — from the Foundation to the community. Big shoutout to all the amazing speakers for the inspiring lightning talks, and to everyone who made this event so special!

🎥 What’s new at the EEF? Alistair Woodman, Jonatan Männchen & Dan Janowski share big updates: 🔐 We’ve joined the CVE® Program as an official CNA 🛡️ Launched the Ægis Initiative to boost security Must-watch for the BEAM community! ▶ youtu.be/5WqMpSt_rRE

Elixir 1.19 is a banger! I'm so pleased with the direction that #ElixirLang is going. My programs just get faster and more correct every time. I just know that we're in good hands. Thank you to everyone on the team for your hard work! github.com/elixir-lang/el… #MyElixirStatus

🔐 Security and the BEAM Ecosystem In this insightful session organized by Erlang Solutions, Jonatan Männchen — CISO at our Foundation —shares how the BEAM community is stepping up its open source security efforts, including becoming an official CVE Numbering Authority (CNA).

Security is most effective when it is built in from day one. In our latest webinar, Jonatan Männchen, CISO at the Erlang Ecosystem Foundation, shares his experience using SAFE, our security audit service for Erlang and Elixir systems. 🔒 The SAFE team reviewed an OpenID Connect (OIDC) client

We are revisiting the ARM32 JIT for #erlang and #elixir after being busy with other things. Thanks to a stipend from Erlang Ecosystem Foundation we are extending the Just in Time compilation from i386 and arm64 architecture to arm32 which is used in embedded systems. Achieved a milestone: first

What happens when security is an afterthought? In our latest session, Jonatan Männchen (CISO, Erlang Ecosystem Foundation) explains how the BEAM ecosystem is tackling security head-on, from CVEs to safer development tools. 🎥 bit.ly/45WjT3y

🙌Welcome to another #GettingToKnowUs edition! This time we got to meet Jonatan Männchen a seasoned developer and lead engineer, with contributions to major projects like the certified #OpenID Connect client for the #BEAM. He is currently the CISO of our Foundation and an active

🚨 Big updates from #OpenSSFCommunity Day NA 2025! ✅ 6 new members incl. balena, @Buildkite, @canonical, Trace Machina, Triam Security, @theErlef 🥇 Golden Egg Award winners recognized 🧰 Major project updates (gittuf, GUAC, SLSA & more) 📖 hubs.la/Q03tPvLm0