Brussels / 4 & 5 February 2023


Building Strong Foundations for a More Secure Future

Addressing The Systemic Issues in the Software Supply Chain that Led to Log4Shell

The open source community has become vulnerable to new kinds of attacks on the software supply chain and there have been efforts by many to address those challenges. Those efforts require new processes, new tools, and new initiatives to drive adoption. Heightened interest, particularly by governments of the world, has driven the open source community to respond with a mobilization plan to achieve specific goals. The Linux Foundation and OpenSSF delivered a first-of-its-kind plan to broadly address open source and software supply chain security outlining approximately $150M of funding over two years to rapidly advance well-vetted solutions to the ten major problems facing open source software security. These concrete action steps are designed to produce immediate improvements and build strong foundations for a more secure future. Find out what you can do to be more secure and support this global security effort.


Brian Behlendorf