The Core Infrastructure Initiative (CII), a Linux Foundation collaborative project, has announced the first round of CII Best Practices badges. The recipients include Curl, GitLab, the Linux kernel, OpenBlox, OpenSSL, Node.js and Zephyr.
CII is a result of collaboration between many industry players including Microsoft, Bloomberg, Facebook, and Qualcomm, among others. The primary goal of the project is to determine security, quality and stability of open source software.
While open source projects boast of being more secure compared to proprietary solutions, the fact is not every project has resources or mechanism to ensure security. In many cases there are not enough eyeballs to render all bugs shallow.
To read this article in full or to leave a comment, please click here