security

OpenSSF

Open Source Security Foundation

Definition

The OpenSSF is a Linux Foundation project that brings together industry leaders to improve the security of open-source software. It hosts projects like Scorecard (security health metrics), Alpha-Omega (targeted vulnerability research), and the Sigstore signing infrastructure.

OpenSSF also maintains best practices badging and security training resources for OSS maintainers.

Related Terms

Sigstore

Sigstore Code Signing

SLSA

Supply Chain Levels for Software Artifacts

SBOM

Software Bill of Materials

← Back to Glossary

Ship secure code faster

Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.

Talk to a Human See the Product