The Linux Foundation Member Summit

In the great hall of The Open Source, gathered together from the cosmic reaches of the multiverse are some of the greatest heroes of open source security ever assembled. Their mission, to fight injustice, to right that which is wrong, and to serve all mankind by helping make open source software more secure. In this session, attendees will learn from the OpenSSF about simple techniques, tactics, and tools that can help improve the overall security posture of their project, help them better defend against attackers, and react more quickly when the inevitable vulnerability report lands in their inbox. Key Takeaways - Learn about steps that can be taken to prepare your project to respond effectively to security findings - Learn about industry standards such as CVE, CVSS, VEX, CVD, and others that will help contextualize external and downstream interest in security - Learn about resources available to learn valuable secure coding techniques and concepts - Learn about community resources that are available to help triage, coordinate, and disclosure discovered vulnerabilities in your codebase, dependencies, and your supply chain