How Do You Trust Open Source Software?

Tuesday, Apr. 25, 2023
2:25 PM - 3:15 PM PT
Location To Be Announced
Awaiting Recording

The OpenSSF Scorecard is an automated tool that assesses several important heuristics ("checks") associated with software security and assigns each check a score of 0-10. These scores help developers understand specific areas to improve to strengthen the security posture of a dependency. This session will discuss projects like the Eclipse Foundation, enoyproxy, and tensorflow use Scorecard.

Brian Russell


Product Manager, Google

Naveen Srinivasan


OpenSSF Scorecard Maintainer, Independent

DevSecOps & Application Security Protecting Data & the Supply Chain Ecosystem

supply chain security ratings API Security

DevSecOps & Application Security

Track Session

Session Classification
Intermediate - Technical

Pass Requirement
  • Full Conference
  • On Demand
  • Press
  • Speaker

Session Code

Share With Your Community