US government, CISA, and open-source foundations launch initiatives to enhance software supply-chain security, including a voluntary threat intelligence sharing program.
The US government, CISA, and leading open-source foundations are launching initiatives to enhance software supply-chain security, including a voluntary threat intelligence sharing program. CISA also published a framework with the Open Source Security Foundation to outline principles and best practices for securing online repositories. The new efforts aim to improve the security posture of open-source software ecosystems and encourage information sharing and enhanced package repository security.
March 08, 2024
4 Articles