GitHub launches $1.25 mln fund to boost open source security
GitHub has announced the launch of the "GitHub Secure Open Source Fund" with an initial investment of $1.25 million, a new initiative aimed at strengthening open source software security.
The fund aims to address vulnerabilities in open source software, which underpins much of the global technology stack but often suffers from poor maintenance. Incidents like the Log4Shell vulnerability have underscored the need for robust security in open source projects.
Contributors to the fund includes American Express, 1Password, Shopify, Stripe, and GitHub's parent company, Microsoft. Other backers include the Alfred P. Sloan Foundation, Chainguard, Kraken, Mayfield Fund, Superbloom, Vercel, and Zerodha among others.
The GitHub Secure Open Source Fund will provide $10,000 grants per project. GitHub will also offer mentorship, certifications, educational workshops, and access to GitHub's suite of tools. The application window is open until 7 January 2025, with programming and funding set to commence shortly after. Interested individuals can apply through here.
Comments