Linux Foundation Organization game da samar da sabon aikin haɗin gwiwa (Open Source Security Foundation), wanda aka tsara don haɗa ayyukan manyan wakilan masana'antu a fagen inganta tsaro na buɗaɗɗen software. OpenSSF za ta ci gaba da haɓaka shirye-shirye kamar и , kuma za ta haɗu da wasu ayyukan da suka shafi aminci da mahalarta aikin suka yi.
Wadanda suka kafa OpenSSF sun hada da kamfanoni irin su , , IBM, JPMorgan Chase, , Kungiyar NCC, OWASP Foundation da Red Hat. GitLab, HackerOne, Intel, Uber, VMware, Hanyoyi guda ɗaya, Okta, Purdue, SAFECode, StackHawk, da Trail of Bits sun haɗu a matsayin mahalarta.
An lura cewa a cikin zamani na zamani, buɗaɗɗen software na buɗaɗɗen buɗaɗɗen buƙatun suna da yawa a cikin fagage da yawa na masana'antar, amma saboda ƙayyadaddun abubuwan ci gaba, jerin abubuwan dogaro da masu halartar ci gaba suna rinjayar tsaronta. Sabili da haka, don tabbatar da tsaro na ayyukan tushen budewa, yana da mahimmanci don tabbatar da ba kawai babban lambar ba, har ma da dogaro, da kuma gano masu haɓakawa waɗanda aka karɓi lambar a cikin aikin, da ingantaccen ingantaccen tabbaci yayin bita da aikatawa. Bugu da kari, tabbatar da tsaro yana buƙatar amfani da amintattun tsarin taro da tabbatar da taro.
Aikin OpenSSF zai mayar da hankali kan fannoni kamar haɗin kai bayani game da rauni da rarraba gyare-gyare, kayan aikin tsaro, mafi kyawun ayyuka don ƙungiyar ci gaba mai aminci, barazanar da ke da alaƙa da tsaro a cikin buɗaɗɗen software, yin aiki a kan tantancewa da ƙarfafa tsaro na mahimman ayyukan buɗaɗɗen tushe, ƙirƙirar kayan aiki don dubawa .
source: budenet.ru