Tag
open-source-governance
Safeguard articles tagged "open-source-governance" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Open Source Security
Building an OSPO security governance model for license and vulnerability risk
77% of large organizations now run an OSPO, and 91% say it owns security issues — but most still track license and CVE risk in separate spreadsheets.
Jul 15, 20266 min read
Governance
Writing an Open Source Software Policy
An open source software policy is what turns ad-hoc dependency choices into a governed, auditable process — here's what to actually put in one.
Jun 17, 20254 min read
Open Source Security
Inside the Apache Foundation's Security Practices
The Apache Software Foundation oversees 350+ projects including some of the most widely deployed software on earth. Their security practices set the standard for foundation-governed open source.
May 20, 20237 min read