https://blog.google/security/open-source-security/Open Source Securityen-usMon, 21 Jul 2025 21:34:00 +0000https://blog.google/security/open-source-security/static/blogv2/images/google.pnghttps://blog.google/security/open-source-security/https://blog.google/security/introducing-oss-rebuild-open-source/Today we're excited to announce OSS Rebuild, a new project to strengthen trust in open source package ecosystems by reproducing upstream artifacts. As supply chain attac…Mon, 21 Jul 2025 21:34:00 +0000https://blog.google/security/introducing-oss-rebuild-open-source/Open Source SecurityarticleGooglehttps://blog.google/security/introducing-oss-rebuild-open-source/Matthew Suozzohttps://blog.google/security/taming-wild-west-of-ml-practical-mode/In partnership with NVIDIA and HiddenLayer, as part of the Open Source Security Foundation, we are now launching the first stable version of our model signing library. U…Fri, 04 Apr 2025 17:00:00 +0000https://blog.google/security/taming-wild-west-of-ml-practical-mode/Open Source SecurityarticleGooglehttps://blog.google/security/taming-wild-west-of-ml-practical-mode/Mihai Maruseachttps://blog.google/security/announcing-osv-scanner-v2-vulnerability/In December 2022, we released the open source OSV-Scanner tool, and earlier this year, we open sourced OSV-SCALIBR. OSV-Scanner and OSV-SCALIBR, together with OSV.dev ar…Mon, 17 Mar 2025 16:46:00 +0000https://blog.google/security/announcing-osv-scanner-v2-vulnerability/Open Source SecurityarticleGooglehttps://blog.google/security/announcing-osv-scanner-v2-vulnerability/Rex PanXueqin Cuihttps://blog.google/security/osv-scalibr-library-for-software/In December 2022, we announced OSV-Scanner, a tool to enable developers to easily scan for vulnerabilities in their open source dependencies. Together with the open sour…Thu, 16 Jan 2025 19:06:00 +0000https://blog.google/security/osv-scalibr-library-for-software/Open Source SecurityarticleGooglehttps://blog.google/security/osv-scalibr-library-for-software/Erik Varga