Olivia
Online
OSTIF Official
@OSTIFofficial
Non-profit org that connects open-source projects with security resources. We are the Open Source Technology Improvement Fund.
Chicago, IL
Joined May 2015
801 Following
1.8K Followers
970 Posts
See the whole blog and report at https://t.co/De0ZTYCzSR
@OSTIFofficial is proud to share the results of our security audit of Scala, executed by a team of three auditors from Quarkslab. We want to thank our very own Derek Zimmer of OSTIF for advocating for this audit for a long time!
#OSTIF #Quarkslab #SovereignTechAgency #Scala
Update to Starlette 1.0.1 as soon as possible and read more about this vulnerability on https://t.co/3hSh3GkmwB
Who to follow
Luke Hinds 
@decodebytes
Creator of https://t.co/T8htHI7vHB , now building https://t.co/OBABqFvHE2 - the agent security platform.
CVE
@CVEnew
Official account maintained by the CVE™ Program to notify the community of new CVE IDs. Posts contain abbreviated details. Full CVE Records on https://t.co/ALn4YvUtom
Yubico | #YubiKey
@Yubico
Creator of the #YubiKey and big fans of multi-factor authentication. Join us on our mission to make secure login easy and available for everyone!
A lack of input sanitization on host header paths in Starlette leads to bypassing auth with a single character across a huge swath of Python LLM infrastructure.
Update to Starlette 1.0.1 as soon as possible and read more about this vulnerability on https://t.co/3hSh3GkmwB
Read about the work on our blog: https://t.co/CsWes8O9DQ
With the help of Ada Logics, 7ASecurity, and the Sovereign Tech Agency, this project received expert security review, testing, and custom documentation contributing to DEfO’s ongoing development and security.
The Open Source Technology Improvement Fund is proud to share the results of our security engagement on Developing ECH for OpenSSL (“DEfO”).
https://t.co/jU8dgaLhoG
#OSTIF #DEfO #AdaLogics #7ASecurity #SovereignTechAgency
With that in mind, our Executive Director Derek Zimmer proposed a new program: a Bug of the Year trophy, given to the individual who finds the best bug published by OSTIF in a calendar year.
We are proud to announce our top 3 bugs of the year on our blog: https://t.co/F6Dhm6xpTx
#OSTIF #BOTY #7ASecurity
While reflecting on our past 10 years, we revisited vulnerabilities discovered during OSTIF audits. As a result of our work, several hundred bugs a year are discovered on average.
https://t.co/7eKnqzAsmQ
Miss our last OSTIF meetup?
You can catch the recording here of Robin David, Software Security Researcher and Research Lead at Quarkslab, presenting "Bitcoin Core Audit: From Static Review to Fuzzing — Inside Bitcoin’s Testing Infrastructure".
#OSTIF #OpenSource #bitcoin
https://t.co/xVEMyHERIv
Don't miss tomorrow's @OSTIFofficial meetup with Robin David, Software Security Researcher and Research Lead at @quarkslab , presenting "Bitcoin Core Audit: From Static Review to Fuzzing — Inside Bitcoin’s Testing Infrastructure".
#OSTIF #OpenSource #bitcoin
With the help of @7aSecurity, this project received custom security testing, documentation, and tooling contributing to Stork’s ongoing security and development work.
Full post here: https://t.co/WPzoWCeo7e
@OSTIFofficial is proud to share the results of our security audit of Stork.
Stork is an open source project developed by the Internet Systems Consortium (ISC) that acts as an administrative interface for monitoring, maintaining, and surveilling Kea servers.
#OSTIF #7ASecurity
While there is a lot to address, an important point of this story sticks out to us at OSTIF- that it was best practices, the secondary review of code before a push, that caught this before disaster struck.
We, like everyone else, couldn't look away from the Veritasium video on the XZ vulnerability.
Watch the video here https://t.co/JQqB7r05bN to learn more details about this incredible story of open source security and community.
#OSTIF #Veritasium #XZ
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers