The Linux Foundation announced that it has allocated $10 million to the OpenSSF (Open Source Security Foundation), aimed at improving the security of open source software. Funds were received through contributions from OpenSSF founding companies, including Amazon, Cisco, Dell Technologies, Ericsson, Facebook, Fidelity, GitHub, Google, IBM, Intel, JPMorgan Chase, Microsoft, Morgan Stanley, Oracle, Red Hat, Snyk and VMware .
As a reminder, OpenSSF's work focuses on areas such as coordinated vulnerability disclosure, patch distribution, security tool development, publishing best practices for secure development, identifying security threats in open source software, and conducting security auditing and hardening work. critical open source projects, creating tools to verify the identity of developers. OpenSSF continues to develop initiatives such as the Core Infrastructure Initiative and the Open Source Security Coalition, and also integrates other security-related work undertaken by companies that have joined the project.
Source: opennet.ru