OpenSSF Courses

New Foundations of SBOM Are Underway at OpenSSF

Explore new OpenSSF projects addressing SBOM challenges, including protobom for data handling, sbomit for trust verification, and bomctl for basic operations. Learn about their impact on the SBOM ecosystem.

• YouTube
• 21 minutes
• Self-Paced
• Free Video

Securing the Software Supply Chain: An In-Depth Exploration of SLSA

Explore SLSA's impact on software supply chain security, covering fundamentals, trust, transparency, security levels, industry effects, and future trends.

• YouTube
• 59 minutes
• Self-Paced
• Free Video

Exploring the Large Language Models Open-Source Security Landscape

Explore security risks of Large Language Models, analyze their open-source ecosystem, and learn mitigation strategies. Gain insights from a comparative study of popular LLM projects' security postures.

• YouTube
• 34 minutes
• Self-Paced
• Free Video

Trusted Publishing: Lessons from PyPI

Explore PyPI's trusted publishing scheme, its OpenID Connect-based authentication, and implementation details. Learn about security improvements and potential applications for other package indices.

• YouTube
• 24 minutes
• Self-Paced
• Free Video

A Balancing Act: Collaboratively Developing Security in Open Source

Explore challenges and opportunities in developing open-source security, balancing collaborative practices with rigorous security measures across ecosystems and organizations.

• YouTube
• 20 minutes
• Self-Paced
• Free Video

OSV and the Life of an Open Source Vulnerability

Explore OSV's role in simplifying open source vulnerability management throughout the software development lifecycle, from database creation to guided remediation.

• YouTube
• 24 minutes
• Self-Paced
• Free Video

Intel's Experiences Using OpenSSF Scorecard to Better Secure Software Portfolio

Explore Intel's use of OpenSSF Scorecard to assess and mitigate software risks across their vast portfolio, learning from their experiences and challenges.

• YouTube
• 26 minutes
• Self-Paced
• Free Video

We Make Python Safer Than Ever

Explore efforts to enhance Python's security, including PyPI audits, improved practices, and community involvement. Learn about challenges, progress, and future plans for a safer ecosystem.

• YouTube
• 24 minutes
• Self-Paced
• Free Video

Learn Security with Me - Part 3

Explore cybersecurity fundamentals alongside OpenSSF's Community Manager in this interactive session, gaining practical insights and knowledge.

• YouTube
• 39 minutes
• Self-Paced
• Free Video

Learn Security with Me - Part 2

Explore cybersecurity fundamentals alongside OpenSSF's Community Manager in this interactive session, gaining practical insights and hands-on experience.

• YouTube
• 33 minutes
• Self-Paced
• Free Video

Learn Security Basics - Part 1

Explore security fundamentals with OpenSSF's Community Manager as she guides you through the initial stages of a comprehensive training program.

• YouTube
• 23 minutes
• Self-Paced
• Free Video

Securing Software Repositories

Explore strategies for securing software repositories, focusing on best practices and tools to protect against vulnerabilities and ensure code integrity.

• YouTube
• 1 hour 1 minute
• Self-Paced
• Free Video

Alpha-Omega: Securing Open Source Software Through Direct Maintainer Engagement

Explore strategies for enhancing open source software security through direct collaboration with project maintainers.

• YouTube
• 38 minutes
• Self-Paced
• Free Video

Mobilizing for the Open Source Security Mobilization Plan

Learn how OpenSSF's 10-point plan aims to improve open source software security and discover ways to contribute to this crucial initiative.

• YouTube
• 22 minutes
• Self-Paced
• Free Video

What's New in the World of SBOMs?

Explore recent developments in Software Bill of Materials (SBOMs) with industry experts, discussing advancements, challenges, and best practices in software supply chain security.

• YouTube
• 29 minutes
• Self-Paced
• Free Video