The Open Source Security Foundation (OpenSSF) is a community of software developers, security engineers, and more who are working together to secure open source software for the greater public …

On March 5-6, CISA hosted an Open Source Software (OSS) Security Summit to develop actions and steps towards achieving a more secure open source ecosystem. To learn more, read our press …

Jan 13, 2026 · Join or renew your OWASP Membership today to continue supporting our mission of making software security visible, so that individuals and organizations worldwide can make informed …

Open-source software security is the measure of assurance or guarantee in the freedom from danger and risk inherent to an open-source software system. Proprietary software forces the user to accept …

In this article, we analyze and compare the most effective open source software security tools for 2025, examining how they protect codebases, manage vulnerabilities, and secure dependencies and …

Feb 27, 2023 · Addressing open source vulnerabilities is critical to maintaining the security of software applications. Open source libraries and frameworks are widely used by developers to build software, …

Mar 24, 2025 · Open-source software security involves identifying, mitigating, and preventing vulnerabilities, threats, and risks associated with using open-source components in software …

Oct 28, 2025 · Learn what open source security is, the top risks like supply chain attacks and malicious packages, and how tools like SCA protect your software.

Feb 2, 2026 · KeePass Password Safe is a free, open source, lightweight, and easy-to-use password manager for Windows, Linux and Mac OS X, with ports for Android, iPhone/iPad and other mobile …

Feb 27, 2025 · Open-source software powers modern technology, but one vulnerable component can create major security risks affecting millions of devices. Open-source security refers to the methods …

Feb 27, 2025 · Open-source software powers modern technology, but one vulnerable component can create major security risks affecting millions of devices. Regular updates and security scans of open …

Sep 5, 2025 · What is open-source security: It's the practice of securing software that uses publicly accessible code. This involves finding and fixing vulnerabilities in both the open-source components …

In this post we’ll define open source security, dive into the risks around open source software, and introduce tools and processes that mitigate the risk organizations face when consuming open source …

Jun 3, 2025 · Open-source security is the practice of protecting open-source software and its dependencies from vulnerabilities, misconfigurations, and supply chain threats. This is a critical …

Dec 16, 2024 · Explore the complexities of open-source security, including risks, benefits, and strategies to safeguard your software supply chain against vulnerabilities.

May 8, 2025 · Discover the benefits of OSS and how to mitigate its security risks through best practices like SBoM, RASP, and DevSecOps integration. Read the whitepaper!

Black Duck helps organizations secure their software supply chain by providing deep visibility into open source components, licenses, and vulnerabilities. Black Duck solutions help ensure compliance, …

Jul 24, 2025 · Discover key steps, common vulnerabilities, and best practices to enhance software security and protect your organization in 2025. Open source has become the driving force in many …

Sep 12, 2023 · This Roadmap lays out CISA’s path forward to help ensure a secure open source software ecosystem.

Feb 3, 2026 · That's exactly what the open-source OpenClaw (originally named Clawdbot, then briefly called Moltbot) software promises its users, but the security risks that come along with those …

The OWASP Top 10 is the reference standard for the most critical web application security risks. Adopting the OWASP Top 10 is perhaps the most effective first step towards changing your software …

Jan 28, 2026 · Our team built the open source Skill Scanner to help developers and security teams determine whether a skill is safe to use. It combines several powerful analytical capabilities to …

Open source is source code that is made freely available for possible modification and redistribution. Products include permission to use and view the source code, [1] design documents, [2] or content of …

Feb 5, 2026 · Anthropic's latest AI model has found more than 500 previously unknown high-severity security flaws in open-source libraries with little to no prompting, the company shared first with Axios. …

Sep 22, 2023 · Our recently-published roadmap on open source software security lays out CISA’s plan to help secure the open source ecosystem.

1 day ago · PostgreSQL is a powerful, open source object-relational database system with over 35 years of active development that has earned it a strong reputation for reliability, feature robustness, and …

Sep 12, 2023 · WASHINGTON – The Cybersecurity and Infrastructure Security Agency (CISA) published the Open Source Software Security Roadmap today that articulates how the agency will …