🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Michael Biocchi from Snyk talks about closing the security knowledge gap between academia and industry. Learn how education shortfalls impact the workforce—and what we can do to bridge the divide. #OSSummit #OpenSSFCommunity

CRob (OpenSSF) & Eddie Knight (Sonatype) talk about how the #OSPSBaseline is gaining traction across open source ecosystems. Learn how it's being adopted by OpenSSF, FINOS, and CNCF. #OSSummit #OpenSSF #OpenSourceSecurity #OpenSSFCommunity

Tracy Ragan from DeployHub talks about turning OpenSSF Scorecard data into clear, actionable insights. Learn how the Ortelius Open Source dashboard helps teams track security metrics, automate improvements, and strengthen project posture. #OSSummit #OpenSSFCommunity

Jess & Tim from Google talk about common myths in open source security. They break down why consistency is hard, what really makes a package vulnerable, & how we can rethink security from first principles. #OSSummit #OpenSSFCommunity

At #OpenSSFCommunity Day NA today (2:15 PM MDT) Tom Bedford, a core maintainer of OpenSSF's Secure Supply Chain Consumption Framework (#S2C2F), joins working group members to share an update on the #SLSA Dependency Track sched.co/1zhnM #OSSecurity #SoftwareSupplyChain

Eve M. & Hayden Blauzvern from Google talk about trends in the #Sigstore ecosystem. Learn how open source communities are using Sigstore for digital signing, what Rekor’s transparency log reveals, and how this data helps strengthen supply chain security. #OpenSSFCommunity

Abdel Sy Fane & Francis Ofungwu from DevSecFlow talk about how the CNAMM helps organizations measure and improve cloud native security. Learn how this community-driven framework enables evidence-based progress across key business functions. #OpenSSFCommunity

François Proulx from BoostSecurity.io talks about uncovering 0-days in CI/CD pipelines and predicting the next XZ-like supply chain attacks. #OSSummit #OpenSSFCommunity

Daniel Moch (Lockheed Martin) talks about public sector supply chain challenges. Learn how OpenSSF and the open source community are teaming up to tackle these complex issues together through projects such as #SLSA. #OSSummit #OpenSSFCommunity

Daniel Appelquist from Samsung talks about SWAG—Secure Web Application Guidelines—and how it brings practical security best practices to web developers. Learn how this work, developed with #OpenSSF, helps strengthen the web ecosystem. #OSSummit #OpenSSFCommunity

Britney Blodget (Docker) talks about fixing container security at the source—by embedding security directly into Docker Hub. Learn how Docker is enabling secure supply chains from the very first building block through OpenSSF standards and tools. #OSSummit #OpenSSFCommunity

Ram Iyengar talks about the highs and hurdles of evangelizing open source security across India. From flight delays to shifting mindsets, it’s a candid journey through the emotions of inspiring the world’s largest developer population to build more securely. #OpenSSFCommunity

Katherine Druckman from @Intel talks about navigating security in generative AI development. Learn how collaborative efforts—like the OpenSSF AI/ML WG & OPEA—are addressing emerging threats & shaping practical security approaches for AI applications. #OSSummit #OpenSSFCommunity

Allen Shearin & Ian Dunbar-Hall from Lockheed Martin talk about #Bomctl, a new OpenSSF sandbox project making #SBOM management easier. Learn how this format-agnostic tool bridges generation, analysis, and automation—powered by #Protobom. #OSSummit #OpenSSFCommunity

Brandt Keller from Defense Unicorns talks about integrating OpenSSF projects #Zarf and #GUAC to streamline #SBOM generation and delivery. Learn how this powerful combo enhances supply chain security across both connected and airgapped environments. #OSSummit #OpenSSFCommunity

Marcela (Intel Labs) & Trishank (Datadog) talk about harnessing in-toto attestations to meet modern security & compliance needs. Learn how their next-gen policy framework makes supply chain metadata more intuitive, flexible, and audit-ready. #OSSummit #OpenSSFCommunity

From bold ideas to real impact — global experts gathered at #UNOpenSourceWeek to secure the open source supply chain, explore GenAI risks, and improve project sustainability through hands-on hackathons. Catch the highlights 👉 hubs.la/Q03t_RMT0

Security is everyone’s job. Watch the on-demand webinar Cybersecurity Skills: A Framework That Works and learn how teams are scaling security education across roles. 🎥 Webinar: hubs.la/Q03v2Hdk0 📖 Blog: hubs.la/Q03v2GgM0 #OpenSSF

🚨 Last call! The CFP for Open Source #SecurityCon 2025 closes today, June 30 at 11:59 PM EDT. Got insights on secure development, OSS governance, or AI in security? We want to hear from you. 🛡️ Learn more: 🔗 hubs.la/Q03v380k0

🌐 June was packed with OpenSSF events and community momentum — and we’re excited to share the recap from #OpenSSFCommunity Day Japan 2025, held in Tokyo for the third year in a row! 📚 Explore the recap and catch up on everything: openssf.org/blog/2025/07/0…