SECURITY, COMPLIANCE & PROJECT HEALTH

BLOG: FOSSology Turns 10 – A Decade of Highlights · READ BLOG POST »

Today and for the foreseeable future, the open source software ecosystem forms a significant element in the basic software infrastructure for the world’s civil systems, including financial, energy, safety, and consumer devices. When there are critical open source software project security failures, we often find the reason was due to a lack of warning in industry that this sustainable investment model was not working. Gaining an understanding of the software components and dependencies, as well as the licensing that governs a project, is necessary in order to understand its health and sustainability and to avoid security-related surprises.
Visit our projects to learn more about becoming a corporate member or getting involved as a contributing developer.
Community Health
OS Software Security
Commit Insights
License Scanning
Certificate Authority
License Compliance
Open Security Controller
Network Security
License Packaging
TODO Group
OS Best Practices

We host projects that help make open source projects more secure and make license compliance easier. We also work to better understand and monitor open source community health and foster better collaboration between top open source program office managers, all in an effort to create sustainable technology ecosystems that last the test of time.

60 MILLION WEBSITES

have been secured by Let's Encrypt for free

10 YEARS

FOSSology has been scanning open source software licenses to ensure compliance

RESOURCES


Open Compliance Program

These resources educate developers and help companies understand their license requirements and how to build efficient, frictionless, and often automated processes to support compliance.

Learn More

Background Post Project
Open Source Strategy Guides

Leverage best practices for running an open source program office or starting an open source project in your organization. Developed by The Linux Foundation in partnership with the TODO Group, these resources represent the experience of our staff, projects, and members.

View the Guides


FOSSology 10 Years of License Scanning

In the absence of a license, software must be treated as all rights reserved, and not distributed further. As a result, understanding the license is key to being able to determine what one is allowed to do with the software.

DOWNLOAD THE PAPER


Free Training: Compliance Basics for Developers

This course teaches the importance of adding copyrights and license to code and provides an overview of the types of licenses to consider, as well as the other permissions that may need to be secured prior to external contribution.

View the Course

Upcoming Event

Open Source Summit Japan · June 20-22 · Tokyo, Japan

Hear From Experts on Security, Compliance, Project Health, and Best Practices

Register For Open Source Summit Japan

STAY INFORMED ABOUT TOPIC

LATEST POSTS FROM TWITTER

"A quick reminder on HTTPS everywhere" via @OReillyMedia: https://t.co/5fbUmdUogR

You asked for it.
We really wanted it.
It's here!

✨✨Announcing free wildcard TLS support on @Netlify ✨✨

Making this free and simple for all took some work. In this post, @keiko713 explains how she "upgraded everything without changing anything"

https://t.co/64gP03LdOn

We have issued over 350M certificates, free-of-charge, for the public's benefit. Give back to a more encrypted Web and show your love for Web security via limited edition Let's Encrypt merch: https://t.co/swycXbtpSz

Let’s Encrypt sécurise plus de 125 millions de domaines. Si vous utilisez Let’s Encrypt, faites un don et obtenez avec votre don notre cadeau Let’s Encrypt à temps limité. Merci de soutenir un Web plus sécurisé! https://t.co/swycXbtpSz #SecureTheWeb

Load More...