As an open-source project, Arduino has always considered security a top priority: making tools and products easy to use for our community has consistently been as important as making them secure.
Today, we are excited to announce that Arduino has joined the Open Source Security Foundation (OpenSFF), the collaborative cross-industry effort to secure the open-source ecosystem.
Hosted at the Linux Foundation, the OpenSFF brings together the efforts of the Core Infrastructure Initiative (CII) and GitHub’s Open Source Security Coalition and is committed to working both upstream and with existing communities to advance the security of open-source software. The foundation will initially include technical initiatives and working groups that will address vulnerability disclosures, security tooling, security best practices, and the identification of security threats to the open-source project.
Arduino is proud to become a member of the OpenSFF alongside GitHub, Google, IBM, Facebook, Red Hat, Facebook, Huawei Technologies, and Samsung. Arduino’s membership to the OpenSFF is also part of the Arduino Donation Program, our philanthropic initiative to fund projects and institutions that can make the difference for the worldwide open-source community.
“Our aim is to make complex technologies simple to use for everyday people and security out of the box is part of the user experience we strive for. We believe that working with skilled security experts and industries across the globe is crucial in identifying security weaknesses and vulnerabilities, “said Arduino co-founder Massimo Banzi. “We are excited to join the Open Source Security Foundation and we look forward to collaborating with other members to improve the security of any open-source ecosystem.”