What's in the SOSS? An OpenSSF Podcast

What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure.

Get a taste of all the ingredients that make up secure open source software (SOSS) and explore the latest trends at the intersection of AI and security, vulnerability management, and threat assessments.

Each episode of What's in the SOSS? is packed with valuable insight designed to foster collaboration and promote stronger security practices for the open source software community.

About Christopher Robinson (aka CRob), host
CRob is a 43rd level Dungeon Master and a 26th level Securityologist. He is a leader within several Open Source Security Foundation (OpenSSF) efforts and is a frequent speaker on cyber, application, and open source security. He enjoys hats, herding cats, and moonlit walks on the beach.

All Episodes

What's in the SOSS? An OpenSSF Podcast

OpenSSF 2025 MVVSR Overview

March 11, 2025 • OpenSSF • Season 2 • Episode 1

CRob is joined by Arun Gupta, Vice President and General Manager of Developer Programs at Intel and OpenSSF Governing Board Chair, and Zach Steindler, Principal Engineer at Github, a member of the OpenSSF TAC and co-chairs the OpenSSF Security Packages Repository Working Group to discuss the key lessons learned from open source security in 2024, the importance of the MVVSR (Mission, Vision, Values, Strategy, and Roadmap) framework, and the exciting initiatives planned for 2025. They highlight the growing reliance on open source, the challenges of dependency vulnerabilities, and the need for better security practices in the industry.

Chapters:

03:29 Key Lessons from Open Source Security in 2024
08:29 MVSR: Mission, Vision, Strategy, and Roadmap
13:41 Importance of Strategy and Roadmap in OpenSSF
17:48 Roadmap Items for Community Collaboration
20:02 Key Resources and Courses for Developers
22:09 Exciting Opportunities Ahead for 2025

Episode links: