Skip to main content
Eclipse Foundation
    • Log in
    • Manage Cookies
  • Download
  • Join us
    • Membership
      • Become a member
      • Review membership fees
      • Access member portal
    • Sponsorship
      • Support us as a sponsor
    • Contribute
      • How to contribute
      • Bring us your project
      • Committer training
    • Collaborate with us
      • Join an existing industry collaboration
      • Start a new collaboration
  • What we do
    • Projects
      • Explore projects
      • View specifications
    • Industry collaborations
      • Explore collaborations
      • Join a working group
      • Join an interest group
      • Read success stories
    • Core services
      • Explore core services
      • Ensure project security
    • Key initiatives
      • Embedded & IoT
      • Enterprise Java
      • Data sovereignty
      • Security & privacy
      • Developer tools & IDEs
      • AI & emerging technologies
      • Automotive & mobility
      • Policy & compliance
    • Strategic services
      • Transform research into open source
      • Engage professional services
      • Build your OSPO
  • Resources
    • What's happening
      • Read our blog
      • Join mailing lists
      • Get news updates
      • Subscribe to newsletter
    • Events
      • Explore events
      • Join a community meetup
      • Attend a webinar
      • Join OCX
    • Developer resources
      • Explore projects hub
      • Attend office hours
      • Report a vulnerability
      • View known vulnerabilities
      • Use the security handbook
    • Industry insights
      • View case studies
      • View whitepapers
      • View surveys & reports
    • Marketplaces
      • Adoptium
      • Eclipse IDE
      • Open VSX
  • About us
    • The Foundation
      • About
      • Meet the team
      • Board & governance
    • Our members
      • Become a member
      • View member directory
      • Access member portal
    • Sponsorship
      • Become a sponsor
      • Sponsor directory
    • More
      • Join our team
      • Explore our brand
      • Contact us

Membership

  • Become a member
  • Review membership fees
  • Access member portal

Sponsorship

  • Support us as a sponsor

Contribute

  • How to contribute
  • Bring us your project
  • Committer training

Collaborate with us

  • Join an existing industry collaboration
  • Start a new collaboration

Projects

  • Explore projects
  • View specifications

Industry collaborations

  • Explore collaborations
  • Join a working group
  • Join an interest group
  • Read success stories

Core services

  • Explore core services
  • Ensure project security

Key initiatives

  • Embedded & IoT
  • Enterprise Java
  • Data sovereignty
  • Security & privacy
  • Developer tools & IDEs
  • AI & emerging technologies
  • Automotive & mobility
  • Policy & compliance

Strategic services

  • Transform research into open source
  • Engage professional services
  • Build your OSPO

What's happening

  • Read our blog
  • Join mailing lists
  • Get news updates
  • Subscribe to newsletter

Events

  • Explore events
  • Join a community meetup
  • Attend a webinar
  • Join OCX

Developer resources

  • Explore projects hub
  • Attend office hours
  • Report a vulnerability
  • View known vulnerabilities
  • Use the security handbook

Industry insights

  • View case studies
  • View whitepapers
  • View surveys & reports

Marketplaces

  • Adoptium
  • Eclipse IDE
  • Open VSX

The Foundation

  • About
  • Meet the team
  • Board & governance

Our members

  • Become a member
  • View member directory
  • Access member portal

Sponsorship

  • Become a sponsor
  • Sponsor directory

More

  • Join our team
  • Explore our brand
  • Contact us
Picture of Mikaël Barbero

Mikaël Barbero

Head of Security at Eclipse Foundation

Mikaël currently serves as Head of Security at the Eclipse Foundation. He leads the security team at the EU’s largest open source software foundation, developing best practices and programs to protect its members and the open-source projects governed by the Foundation. He is a seasoned technologist passionate about open source, software engineering, and creating user-centered software and solutions. His diverse experience spans everything from software architecture to team management, and of course, cybersecurity. Find me on other websites: https://linktr.ee/mbarbero

  1. Home
  2. Blogs
  3. Blog Posts

    Understanding Software Provenance

    Mikaël Barbero

    In the ever-evolving landscape of open-source software development, the creation and distribution of artifacts—such as compiled binaries, libraries, and documentation—represent...

    Eclipse Foundation Embraces Sigstore

    Mikaël Barbero

    As part of our ongoing commitment to fortifying the security of our software development processes, we’re excited to announce a...

    Elevating Software Supply Chain Security: Eclipse Foundation's 2FA Milestone

    Mikaël Barbero

    In the realm of open-source software, security of the supply chain is not just a concern—it’s a crucial battleground. The...

    Eclipse Mosquitto Security Audit Has Been Completed

    Mikaël Barbero

    We’re excited to announce that the Eclipse Foundation has successfully conducted a security audit for Eclipse Mosquitto, marking our fourth...

    Eclipse Jetty Security Audit Has Been Completed

    Mikaël Barbero

    We’re proud to share that the Eclipse Foundation has completed the security audit for Eclipse Jetty, one of the world’s...

    Eclipse Foundation Publishes Results of Eclipse JKube Security Audit

    Mikaël Barbero

    Today, the Eclipse Foundation released the results of our security audit for Eclipse JKube, a collection of tools for building...

    Eclipse Foundation Publishes Results of Equinox p2 Security Audit

    Mikaël Barbero

    Over the past year, the Eclipse Foundation has made securing the open source software supply chain a priority. By growing...

    New SLSA++ Survey Reveals Real-World Developer Approaches to Software Supply Chain Security

    Mikaël Barbero

    Answering even basic questions about software supply chain security has been surprisingly hard. For instance, how widespread are the different...

    March 2023 Update on Security improvements at the Eclipse Foundation

    Mikaël Barbero

    Thanks to financial support from the OpenSSF’s Alpha-Omega project, the Eclipse Foundation is glad to have made significant improvements in...

    Shell Hole: How Advanced Prompts are Putting Software Developers at Risk

    Mikaël Barbero

    Advanced shell prompts, such as those provided by theme engines like oh-my-zsh and oh-my-posh, have become increasingly popular among software...

    Update on Security improvements at the Eclipse Foundation

    Mikaël Barbero

    Thanks to financial support from the OpenSSF’s Alpha-Omega project, the Eclipse Foundation is glad to have made significant improvements in...

    Open Source Software Supply Chain Security starts with developers

    Mikaël Barbero

    Open Source Software Supply Chain is at risk: threat actors are shifting target to amplify the blast radius of their...

    Pagination

    • First page «
    • Previous page ‹
    • Page 1
    • Current page 2
    • Page 3
    • Next page ›
    • Last page »

    Back to the top

    • Eclipse Foundation
      • About
      • Projects
      • Collaborations
      • Membership
      • Sponsor
    • Legal
      • Privacy Policy
      • Terms of Use
      • Compliance
      • Code of Conduct
      • Legal Resources
    • More
      • Report a Vulnerability
      • Service Status
      • Contact Us
      • Support

    See what we're up to

    Stay up to date

    Subscribe to our newsletter

    Eclipse Foundation

    Copyright © Eclipse Foundation AISBL. All rights reserved.

    • Privacy policy
    • Terms of use
    • Compliance
    • Legal