OpenSSF warns of Open Source Social Engineering Threats - DevOps.com https://devops.com/openssf-warns-of-open-source-social-engineering-threats/ by @sjvn
The XZ attack wasn’t the first, nor will it be the last.
Meet the System Package Data Exchange: SPDX 3.0, with Profiles: https://thenewstack.io/introducing-spdx-30-and-profiles/ by @sjvn
With #SPDX 3.0, you can track not just software packages, but pretty much anything and everything. It's a game-changer. #OSSummit #Security
Return with me to the Glory Days of Windows XP, which apparently some people, somehow, are still using even though support for it ended in...2014. https://www.computerworld.com/article/2091600/youre-not-really-still-using-windows-xp-are-you.html by @sjvn
It started as a joke, but to my bemused dismay, I've discovered that many people still use #Windows XP. Eep!
The Commonhaus Way to Manage Open Source Projects - DevOps.com https://devops.com/the-commonhaus-way-to-manage-open-source-projects/ by @sjvn
So if you want to manage your #opensource project better but want flexibility, consider Commonhaus.
Linux Foundation is leading fight against fauxpen source https://theregister.com/2024/04/12/linux_foundation_opinion/ by @sjvn
The Linux Foundation actively supports open-source forks of once open-source projects that their corporate owners have moved to non-open licenses.
Locking down container security once and for all with Rust-based Edera https://zdnet.com/article/locking-down-container-security-once-and-for-all-with-rust-based-edera/ by @sjvn
A new #Rust-based, memory-safe, #opensource hypervisor promises to make #cloudnative #container management much safer. #Security
OpenTofu Denies Hashicorp's Code-Stealing Accusations - http://DevOps.com https://devops.com/opentofu-denies-hashicorps-code-stealing-accusations/ by @sjvn
OpenTofu claims Hashicorp was mistaken. Will Hashicorp pull back from its cease and desist order? Stay tuned. #opensource
Securing Open Source Software, the Cyber Resilience Act Way https://devops.com/securing-open-source-software-the-cyber-resilience-act-way/ by @sjvn
The EU CRA requires new #security rules for #opensource software development. Here's how the Eclipse Foundation and allies are tackling this problem.
Tetrate Enterprise Gateway for Envoy Graduates: https://thenewstack.io/tetrate-enterprise-gateway-for-envoy-graduates/ by
@sjvn
It's time to replace Ingress on your #Kubernetes cluster and Tetrate has an alternative, Tetrate Enterprise Gateway for Envoy, for you to consider.
Hashicorp Versus OpenTofu Gets Ugly - http://DevOps.com https://devops.com/hashicorp-versus-opentofu-gets-ugly/ by
@sjvn
The lawyers are getting involved in the #opensource battle between
Hashicorp and OpenTofu
.
FCC Mulls Rules to Protect Abuse Survivors from Stalking Through Cars
To protect domestic violence survivors from abusers, the FCC wants to include internet-connected vehicles under the Safe Communication Act.
https://securityboulevard.com/2024/04/fcc-mulls-rules-to-protect-abuse-survivors-from-stalking-through-cars/
Happy technology and business journalist.