United States national security interests are poised to become more invested in and engaged with open source projects classified as public infrastructure. From Log4j to the Securing Open Source Software Act, how did it all come together in 2022, and what may lie ahead? Estimated reading time: 8 minutes Back in 2016, the White House… Continue reading Open Source Communities: You May Not Be Interested in CISA, But CISA is Very Interested in You
Category: CVSS
When the Free Rider is Government
Chinmayi Sharma argues our digital infrastructure is built on open source, and it cannot provide adequate security so governments should help out. Estimated reading time: 2 minutes Over at Lawfare, Chinmayi Sharma talks open source security and argues our digital infrastructure is built on a house of cards — i.e., open source software. Log4j comes… Continue reading When the Free Rider is Government