Announcing Security Training on Vulnerability Management, SBOM and related subjects
Do you want to know more about vulnerability management? As a developer, you might receive reports, or need to create...
security
Strengthening Open Source Security: Eclipse Foundation Selected by the Sovereign Tech Agency for a New Service Agreement
We are pleased to announce that the Eclipse Foundation has been selected by the Sovereign Tech Agency for a new...
Eclipse Foundation Security Statement: JARsigner Abuse by Malicious Actors
Recent reports indicate that cybercriminals are exploiting the Windows DLL side-loading technique using the legitimate jarsigner.exe executable to propagate malware...
Introducing the Updated Eclipse Foundation Security Policy
On November 20, 2024, the Board of Director of the Eclipse Foundation approved version 1.2 of its Security Policy. This...
The Cyber Resilience Act is Here
With the recent publication of the EU’s Cyber Resilience Act (CRA) in the EU official journal, a 3 year race...
The Eclipse Foundation offers a free security training for all Committers and Contributors
You know that security is important but just have no time to spend digging into numerous tutorials and guides to...
Securing the Future of Open Source: Launching the Open Regulatory Compliance Working Group
Today marks an important milestone for the open source community. As open source software continues to drive innovation across industries...
Per-Project Security Teams FAQ
In response to requests from various projects and after discussions between the Eclipse Foundation Security Team and the Architecture Council...
DO NOT USE IN PRODUCTION
Do you have a demo or examples in a specific repository? Or perhaps you have a functionality that needs time...
Exploring the Future of Open Source Security at OCX 2024
In the fast-paced world of software development, open source has emerged as a catalyst for innovation. But with this rapid...