Explore the process of identifying and assessing critical open source projects in this 12-minute talk by Jeff Mendoza from Kusari. Gain insights into the OpenSSF Securing Critical Projects Working Group's efforts to support essential yet underserved open source projects that underpin our infrastructure and society. Learn about the decision-making factors used to evaluate project criticality, including the definition of "critical" and "project," and how to estimate the potential impact of security vulnerabilities. Understand the importance of this initiative in strengthening the overall security of the open source ecosystem.
What Makes a Project Critical? Discovering and Evaluating Popular Open Source Software
Overview
Syllabus
What Makes a Project Critical? Discovering & Evaluating Popular Open Source Software - Jeff Mendoza
Taught by
OpenSSF
Related Courses
-
How to Trust Your Open Source Software Using Scorecards
-
Supply Chain Armoring: Tools and Techniques for Open Source Projects
-
Automated Techniques for Measuring Trustworthiness of Open Source Code and Communities
-
Managing Audits for Critical Open Source Projects
-
Assessing Open Source Software Projects in the Software Supply Chain Security
-
Managing Audits for Critical Open Source Projects
