Wednesday, June 29, 2022 - 00:00
Eclipse Foundation Partners With OpenSSF’s Alpha-Omega Project
With the help of funding from the Alpha-Omega Project, the Eclipse Foundation is rolling out new supply chain security measures.
Some of these measures will include:
- Automating the generation of static source-based SBOMs for all Eclipse Foundation project repositories.
- Implementing a SLSA-based project badging program for Eclipse Foundation projects.
- Initiating a number of security audits for high-profile Eclipse Foundation projects.
Our Open Source Supply Chain Best Practices are available to read on GitHub.
For more background on our plans to bolster open source security, read this recent blog post from Eclipse Foundation Executive Director Mike Milinkovich.
More from this Edition
Access Fully-Verified Java Binaries in the Adoptium Marketplace
This new marketplace allows users to obtain Java SE TCK certified and AQAvit quality-tested binaries, including Eclipse Temurin, through a centralized site managed by the Eclipse Foundation.
Watch Recordings From Virtual IoT & Edge Days 2022
Last month, we held the second edition of Virtual IoT & Edge Days, featuring 11 unique talks, demonstrations, and panel discussions.