![CNCF [Cloud Native Computing Foundation]](https://www.classcentral.com/cdn-cgi/image/height=60,format=auto,quality=85/images/logos/institutions/cncf-cloud-native-computing-foundation-hz.png){kind=small}
Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Explore the intersection of cybersecurity policy and open source software security in this 27-minute conference talk that examines governmental responses to major vulnerabilities like Log4shell and the XZ Utils compromise. Learn from former CISA senior advisor Jack Cable as he shares firsthand experiences leading open source software security initiatives at the Cybersecurity and Infrastructure Security Agency and drafting the first U.S. legislation focused on open source software security in the Senate. Discover how policymakers often propose solutions that may conflict with open source community values and principles. Gain insights into past security incidents that shaped policy responses, current regulatory frameworks being developed, and future initiatives aimed at strengthening the open source ecosystem's security posture. Understand the challenges of balancing government oversight with the collaborative, transparent nature of open source development, and learn practical ways to participate in shaping policies that affect the open source community while maintaining its core ethos and effectiveness.
