Security News > 2020 > August > Linux Foundation rolls bunch of overlapping groups into one to tackle growing number of open-source security vulns
The OpenSSF is a consolidation of several pre-existing efforts in the same space and intends bring the Open Source Security Coalition and the Core Infrastructure Initiative under one roof.
The CII is an existing Linux Foundation project that has wide support, including from AWS, Facebook, Huawei, Cisco, Intel, Qualcomm, and VMware, as well as most of the OpenSSF founder members mentioned above.
The Linux Foundation said that OpenSSF is not just CII renamed.
"The CII was funded largely by grants, OpenSSF will be supported by Linux Foundation membership dues with targeted organization contributions to support initiatives."
The Linux Foundation said another project to be absorbed is GitHub's OSSC, and "All of the OSSC members and their projects will now be a part of the OpenSSF".
News URL
https://go.theregister.com/feed/www.theregister.com/2020/08/03/linux_foundation_forms_openssf/
Related news
- Open source maintainers: Key to software health and security (source)
- Osmedeus: Open-source workflow engine for offensive security (source)
- Am I Isolated: Open-source container security benchmark (source)
- ScubaGear: Open-source tool to assess Microsoft 365 configurations for security gaps (source)
- Deepen your knowledge of Linux security (source)
- Debunking myths about open-source security (source)
- Oracle Linux 9 Update 5 brings security updates, OpenJDK 17, .NET 9.0 (source)
- AxoSyslog: Open-source scalable security data processor (source)
- 'Alarming' security bugs lay low in Linux's needrestart utility for 10 years (source)