Google Helps OSTIF Boost Security of Open Source Projects
Google this week announced plans to support the Open Source Technology Improvement Fund (OSTIF) to boost the security of open source projects.
The announcement, which follows Google’s $100 million pledge to open source security projects, will help OSTIF launch its Managed Audit Program (MAP), meant to review the security of projects critical to the open source environment.
“This marks a major success in bringing on large corporate donors to support OSTIF’s model of improving open source software through security reviews and source code audits. A focused, well-scoped review by an experienced team can drive significant and long-lasting improvements in widely used projects,” according to an OSTIF statement.
OSTIF said the Managed Audit Program will help expand security reviews to more projects vital to the open source ecosystem. Improvements brought to the selected eight libraries, frameworks, and apps are expected to have a great overall impact on the open-source ecosystem relying on them.