Episode 438

Episode 438 - CISA's bad OSS advice vs the Whitehouse good advice

Open Source Security · Open Source Security

July 22, 202434m 52s

Audio is streamed directly from the publisher (traffic.libsyn.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.

Original episode page

Show Notes

Josh and Kurt talk about two documents from the US government that discuss open source in very different ways. The CISA document lays out a way to measure open source, but we take issue with the idea of trying to measure which open source projects are "good". The Whitehouse on the other hand takes an approach that is very open source, get involved. Trying to measure open source isn't producing anything actionable, but getting involved is very actionable, and very much how open source works.

Show Notes

CISA: Continued Progress Towards a Secure Open Source Ecosystem
Whitehouse: Administration Cybersecurity Priorities for the FY 2026 Budget

← All episodes of Open Source Security