This is an important annoucement. OpenSSF Announces The Alpha-Omega Project to Improve Software Supply Chain Security for 10,000 OSS Projects - Open Source Security Foundation Widely deployed OSS projects that are critical to global infrastructure and innovation have become top targets for adversarial attacks. Following new vulnerability disclosures, adversary attacks can be seen within hours. … Continue reading Mitigating the software supply chain attacks →

Data collection by firms had one thing missing - "trust". Part of it is related to "awareness", new localisation laws and shifting technological focus of "big-tech" to address the ongoing "privacy debate". It remains to be seen if there is any conflict of interest in the "non-profits" who are likely to be propped up by … Continue reading Adding trust to data collection →