Microsoft announced that its Secure Supply Chain Consumption Framework (S2C2F) has been adopted by the Linux Foundation’s Open Source Security Foundation (OpenSSF) in a move to improve “supply chain security for everyone...
To address the growing threat of software supply chain attacks, the Linux Foundation announced at the at the Linux Foundation Membership Summit that it is upgrading its LFX Security module to deal with these attacks.
Linux is everywhere and it needs extra protection, according to Google. "We are constantly investing in the security of the Linux Kernel because much of the internet, and Google – from the devices in our pockets, to the services running on Kubernetes in the cloud – depend on the security of it," said Eduardo Vela from the Google Bug Hunters Team.
In use for a decade as the de facto standard for communicating software bills of materials, The Linux Foundation has announced that the Software Package Data Exchange (SPDX) specification has been published as ISO/IEC 5962:2021 and recognized as the open standard for security, license compliance and other software supply chain artifacts.
In celebration of Linux's 30th birthday, Greg Kroah-Hartman, the Linux Foundation fellow who oversees stable Linux kernel releases, talks about world domination, what was, and what may be for the kernel.
Marius Nestor celebrates Linux’s 30th birthday with a good champagne, a delicious cake and a brief recount of 30 freaking awesome years of the inherently secure and increasingly popular Linux OS - and many more to come!