What's in the SOSS? An OpenSSF Podcast
What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure.
Get a taste of all the ingredients that make up secure open source software (SOSS) and explore the latest trends at the intersection of AI and security, vulnerability management, and threat assessments.
Each episode of What's in the SOSS? is packed with valuable insight designed to foster collaboration and promote stronger security practices for the open source software community.
About Christopher Robinson (aka CRob), host
CRob is a 43rd level Dungeon Master and a 26th level Securityologist. He is a leader within several Open Source Security Foundation (OpenSSF) efforts and is a frequent speaker on cyber, application, and open source security. He enjoys hats, herding cats, and moonlit walks on the beach.
What's in the SOSS? An OpenSSF Podcast
Alpha-Omega’s Michael Winser and Catalyzing Sustainable Improvements in Open Source Security
In this episode, CRob talks to Michael Winser, Technical Strategist for Alpha-Omega, an associated project of the OpenSSF that with open source software project maintainers to systematically find new, as-yet-undiscovered vulnerabilities in open source code – and get them fixed – to improve global software supply chain security.
- 01:00 - Michael shares his origin story into open source
- 02:09 - How Alpha-Omega came to be
- 03:48 Alpha-Omega’s mission is catalyzing sustainable security improvements
- 05:16 - The four types of investments Alpha-Omega makes to catalyze change
- 11:33 - Michael expands on his “clean the beach” approach to impacting open source security
- 16:41 - The 3F framework helps manage upstream dependencies effectively
- 21:13 - Michael answers CRob’s rapid-fire questions
- 23:06 - Michael’s advice to aspiring development and cybersecurity professionals
- 24:44 - Michael’s call to action for listeners
Links