Join us

ContentUpdates from The Open Source Security Foundation (OpenSSF) is a...
 Activity
maydali28
@maydali28 started using tool Spring , 1 week, 6 days ago.
 Activity
maydali28
@maydali28 started using tool Kubernetes , 1 week, 6 days ago.
 Activity
maydali28
@maydali28 started using tool Java , 1 week, 6 days ago.
 Activity
maydali28
@maydali28 started using tool Azure Kubernetes Service (AKS) , 1 week, 6 days ago.
 Activity
maydali28
@maydali28 started using tool AWS EKS , 1 week, 6 days ago.
Story Keploy Team Trending
sancharini
@sancharini shared a post, 1 week, 6 days ago

Why Understanding Software Testing Basics Is Essential for Every Developer?

Understand why software testing basics is essential for every developer. Learn key testing types, levels, techniques, and best practices to write reliable, maintainable, and high-quality code.

Software Testing Basics for Developers
474 views  
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email
Course
eon01
@eon01 published a course, 1 week, 6 days ago
Founder, FAUN.dev

Practical MCP with FastMCP & LangChain

#LangCha...  #Model C...  #FastMCP  #AI agen... 
FastMCP ChatGPT GPT LangChain Python

Engineering the Agentic Experience

Practical MCP with FastMCP & LangChain
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email

|

Sell your course on FAUN.dev
 Activity
kala
@kala added a new tool FastMCP , 1 week, 6 days ago.
News FAUN.dev() Team Trending
kala
@kala shared an update, 1 week, 6 days ago
FAUN.dev()

FastMCP 3.0 Released: Community-Driven Enhancements Unveiled

#FastMCP  #FastMCP...  #Prefect...  #AI  #MCP 
FastMCP

FastMCP 3.0 is now generally available. It keeps the @mcp.tool() API but rebuilds the internals around components + providers + transforms, adds a CLI, and ships production features like component versioning, per-component auth + OAuth additions, OpenTelemetry tracing, background tasks, pagination, tool timeouts, and hot reload. The project moved from jlowin/fastmcp to PrefectHQ/fastmcp on GitHub, and upgrading is supported via dedicated guides for FastMCP 2 and MCP SDK users.

FastMCP 3.0 Released: Community-Driven Enhancements Unveiled
566 views  
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email
Story Trending
laura_garcia
@laura_garcia shared a post, 2 weeks ago
Software Developer, RELIANOID

🚀 Ready to level up your #AppSec skills?

Join us at London OWASP Training Days 2026 – February 25–28 in London! Hands-on, instructor-led sessions covering: 🔹 API Security 🔹 Secure Development & Testing 🔹 Threat Modeling & Risk Analysis 🔹 AI & Security 🔹 Mobile & IoT Security 🔹 Offensive Security & Pentesting Learn from the global OWASP com..

London OWASP Training Days 2026
412 views  
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email
The Open Source Security Foundation (OpenSSF) is an industry-backed foundation focused on strengthening the security of the global open source software ecosystem. It brings together major technology companies, cloud providers, open source communities, and security experts to address systemic security challenges that affect how software is built, distributed, and consumed.

OpenSSF was launched in 2021 and operates under the Linux Foundation, combining efforts from earlier initiatives such as the Core Infrastructure Initiative (CII) and industry-led supply chain security programs. Its mission is to make open source software more trustworthy, resilient, and secure by default, without placing unrealistic burdens on maintainers.

The foundation works across several key areas:

- Supply chain security: Developing frameworks, best practices, and tools to secure the software lifecycle from source to deployment. This includes stewardship of projects like sigstore and leadership on SLSA (Supply-chain Levels for Software Artifacts).

- Security tooling: Supporting and incubating open source tools that help developers detect, prevent, and remediate vulnerabilities at scale.

- Vulnerability management: Improving how vulnerabilities are discovered, disclosed, scored, and fixed across open source projects.

- Education and best practices: Publishing guidance, training, and maturity models such as the OpenSSF Best Practices Badge Program, which helps projects assess and improve their security posture.

- Metrics and research: Advancing data-driven approaches to understanding open source security risks and ecosystem health.

OpenSSF operates through working groups and special interest groups (SIGs) that focus on specific problem areas like securing builds, improving dependency management, or automating provenance generation. This structure allows practitioners to collaborate on concrete, actionable solutions rather than high-level policy alone.

By aligning maintainers, enterprises, and security teams, OpenSSF plays a central role in reducing large-scale risks such as dependency confusion, compromised build systems, and malicious package injection. Its work underpins many modern DevSecOps and cloud-native security practices and is increasingly referenced by governments and enterprises as a baseline for secure software development.