The Eclipse Foundation, in collaboration with Chainguard, the Rust Foundation, and OpenSSF, is fielding a survey to better understand current software supply chain integrity practices.
The goal of this survey is to learn more about how various software supply chain security practices are currently being used, as well as how we as a community can go about making open source software security improvements.
Please take a few minutes to share your insights and support for this initiative. With your input, we look forward to further enhancing processes and best practices that lead to greater software supply chain integrity and a stronger open source community.