TechTaffy

tech:

taffy

The Mozilla Foundation launches Secure Open Source Fund

By TechTaffy Desk

The Mozilla Foundation has launched the Secure Open Source (SOS) Fund, a new fund the organization says will provide security auditing, remediation, and verification for key open source software projects. The Fund is part of the Mozilla Open Source Support program (MOSS), and has been allocated $500,000 in initial funding.

Mozilla will tackle the need for more security in the open source ecosystem through three steps, says Chris Riley, head of Public Policy with the organization. Mozilla will contract with and pay professional security firms to audit other projects’ code; work with project maintainers to support and implement fixes, and to manage disclosure; and pay for the remediation work to be verified, to ensure any identified bugs have been fixed.

Mozilla says it has already tested this process with audits of three pieces of open source software, uncovering and addressing a total of 43 bugs, including one critical vulnerability and two issues with a widely-used image file format.

You can find the link to SOS Fund application here.

Just in

Around the web

Biden signs TikTok ‘ban’ bill into law, starting the clock for ByteDance to divest it — The Verge

President Joe Biden signed a foreign aid package that includes a bill that would ban TikTok if China-based parent company ByteDance fails to divest the app within a year, writes Lauren Feiner.
IT

IBM to acquire HashiCorp for $6.4B

IBM and HashiCorp have entered into an agreement for IBM to acquire HashiCorp, a provider of infrastructure and security management products, for $6.4 billion.
AI

OpenAI introduces new enterprise features

OpenAI announced new features aimed at enterprise users on Tuesday, at the wake of Meta's recent LLama 3 announcement.
Around the web

Oracle is moving its world headquarters to Nashville to be closer to health-care industry — CNBC

Oracle Chairman Larry Ellison said Tuesday that the company is moving its world headquarters to Nashville, Tennessee, to be closer to a major health-care epicenter, writes Ashley Capoot.
Industry

Square expands offline payments globally

Payment processing company Square has announced the expansion of its offline payments feature to all hardware devices and countries.