OTel Updates: Unroll Processor Now in Collector Contrib
The OTel unroll processor splits bundled log records into individual events. Now in Collector Contrib v0.137.0 for VPC and CloudWatch logs.
Updates from The Open Source Security Foundation (OpenSSF) is a... Link
Story
@laura_garcia shared a post, 1 month, 1 week ago
Software Developer, RELIANOID
Tesco’s latest outage is a reminder: uptime IS the customer experience.
Shoppers across the UK faced checkout failures, broken order updates, and Clubcard access issues as Tesco’s digital platforms suffered “intermittent” instability. In modern retail, even brief disruptions damage trust, loyalty, and sales. At RELIANOID, we help retailers stay resilient with intelligen..
Link
@anjali shared a link, 1 month, 1 week ago
Customer Marketing Manager, Last9
Instrumentation: Getting Signals In
See how instrumentation in OpenTelemetry helps track app issues, know the difference between auto and manual methods, and when to use them.
Activity
@devopslinks added a new tool Syft , 1 month, 1 week ago.
Activity
@kaptain added a new tool KubeLinter , 1 month, 1 week ago.
Activity
@devopslinks added a new tool Grype , 1 month, 1 week ago.
Activity
@devopslinks added a new tool JFrog Xray , 1 month, 1 week ago.
Activity
@devopslinks added a new tool OWASP Dependency-Check , 1 month, 1 week ago.
OpenSSF was launched in 2021 and operates under the Linux Foundation, combining efforts from earlier initiatives such as the Core Infrastructure Initiative (CII) and industry-led supply chain security programs. Its mission is to make open source software more trustworthy, resilient, and secure by default, without placing unrealistic burdens on maintainers.
The foundation works across several key areas:
- Supply chain security: Developing frameworks, best practices, and tools to secure the software lifecycle from source to deployment. This includes stewardship of projects like sigstore and leadership on SLSA (Supply-chain Levels for Software Artifacts).
- Security tooling: Supporting and incubating open source tools that help developers detect, prevent, and remediate vulnerabilities at scale.
- Vulnerability management: Improving how vulnerabilities are discovered, disclosed, scored, and fixed across open source projects.
- Education and best practices: Publishing guidance, training, and maturity models such as the OpenSSF Best Practices Badge Program, which helps projects assess and improve their security posture.
- Metrics and research: Advancing data-driven approaches to understanding open source security risks and ecosystem health.
OpenSSF operates through working groups and special interest groups (SIGs) that focus on specific problem areas like securing builds, improving dependency management, or automating provenance generation. This structure allows practitioners to collaborate on concrete, actionable solutions rather than high-level policy alone.
By aligning maintainers, enterprises, and security teams, OpenSSF plays a central role in reducing large-scale risks such as dependency confusion, compromised build systems, and malicious package injection. Its work underpins many modern DevSecOps and cloud-native security practices and is increasingly referenced by governments and enterprises as a baseline for secure software development.
