The Alpha Omega Project is a new initiative by the Linux Foundation to strengthen the security of critical open source applications.
Why is this important? The answer is the extent to which we all now rely on open source software which, as I recently reported in European Union Will Pay For Finding Bugs In Open Source Software, powers everything, from modern servers, to IoT, to the desktops used by enterprises and governments.
Evidence of the criticality of such software was provided by the commotion caused by the OpenSSL Heartbleed bug or the recent RCE bug which shook the foundations of every industry. Nowadays every company is a software house, be it Adidas, Tesco or Oracle, whose stack is certain to involve open source libraries at a minor or larger scale. Even the White House acknowledged this, leading to the SBOM directive.
full article on i-programmer:
Comments