The Remodel Expertise Summits begin October thirteenth with Low-Code/No Code: Enabling Enterprise Agility. Register now!
Let the OSS Enterprise publication information your open supply journey! Sign up here.
Google has announced that it’s sponsoring a brand new open supply safety program hosted by the Linux Basis. The Safe Open Supply (SOS) Rewards pilot program gives monetary incentives for builders engaged on safety round essential open supply initiatives.
Open supply software program performs an integral a part of many essential infrastructure and nationwide safety techniques, nevertheless latest information means that “upstream” assaults on open supply software program have increased in the past year as dangerous actors search new methods to infiltrate the software program provide chain. Furthermore, numerous organizations — from authorities companies to hospitals and firms — have been hit by targeted software supply chain attacks, main President Biden to issue an executive order outlining measures to fight it.
As such, Google just lately unveiled a $10 billion five-year dedication to support President Biden’s plans to bolster U.S. cyber defenses, together with a $100 million wedge to fund third-party foundations that assist open supply safety. Just a few weeks again, Google revealed it was giving financial backing to the Open Supply Expertise Enchancment Fund (OSTIF), with plans to initially sponsor safety evaluations in eight essential open supply software program initiatives. This newest announcement builds on that, with Google now committing $1 million to the SOS Rewards program.
Rewards can range from $505 to $10,000 or extra relying on the scope and significance of the venture when it comes to business adoption and the potential impression the enhancements can have.
Whereas the SOS Rewards program does bear some similarities to a conventional bug bounty program, SOS Rewards is completely different in that it isn’t trying to reward particular venture vulnerability discoveries and fixes — it’s about supporting “project-wide enhancements and the implementation of open supply safety finest practices,” in response to the venture’s FAQ part.
For now, solely representatives from Google’s open supply safety staff (GOSST) and the Linux Basis will sit on the evaluating panel, although plans are afoot to increase membership to different organizations sooner or later.
VentureBeat’s mission is to be a digital city sq. for technical decision-makers to realize data about transformative expertise and transact.
Our web site delivers important data on information applied sciences and techniques to information you as you lead your organizations. We invite you to turn into a member of our group, to entry:
- up-to-date data on the themes of curiosity to you
- our newsletters
- gated thought-leader content material and discounted entry to our prized occasions, comparable to Transform 2021: Learn More
- networking options, and extra