🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Yet another win for OpenSSF OSV Schema and overall open source ecosystem: "Ubuntu Security Notices Now Available in OSV" - openssf.org/blog/2024/06/1…

I couldn't agree more!

CodeRover++, new version of AutoCodeRover, is here! A pragmatic outlook to autonomous software engineering of the future ! Optimising for multiple objectives (efficacy, cost and time), while automatically solving software engineering tasks. Future Large Language Model (LLM)

The DARPA #AIxCC will help design new #AI systems to secure major open source projects that our critical infrastructure relies upon. Learn how Google's OSS-Fuzz can show opportunities where AI can help find and patch vulnerabilities for the challenge: security.googleblog.com/2024/06/hackin…

🚀 Chainguard ⛓️ is now publishing its security advisory feed in the Open Source Vulnerabilities (OSV) format. chainguard.dev/unchained/chai…

The deadline for DARPA #AIxCC is just a week away. I am beyond excited on what participants will accomplish to push the state of the art in vuln finding and fixing using #Gemini! With #Gemini 1.5 Pro and 1M context window, we see early promising results in vulnerability analysis

🚨💰 Google VRP Reward Update 💰🚨 Good news, we are significantly increasing the reward amounts offered by the Google VRP! Look out for up to 5x higher payouts and a maximum reward of $151,515! Details here: bughunters.google.com/blog/540051395…

The Coalition for Secure AI (#CoSAI) officially launched today at the Aspen Security Forum! Hosted by OASIS, CoSAI will provide the guidance and tools needed to create AI systems that are Secure-by-Design. oasis-open.org/2024/07/18/int… #CoSAI #AI #AIsecurity #OpenSource #OASIS

Exciting news from Aspen Security Forum! 1 yr after introducing #SAIF, Google is forming Coalition for Secure AI CoSAI w/ OASIS Open & partners @Amazon Paul Jankura, @Chainguard Cisco @Cohere GenLab Venture Studio IBM @Intel Microsoft @NVIDIA OpenAI @Paypal & Wiz blog.google/technology/saf…

Excited to see the incubation of "Software Supply Chain Security for AI systems" workstream in CoSAI. This workstream will aim to improve AI security by providing guidance on evaluating provenance, managing third-party model risks, and assessing full AI application provenance by

Are YOU ready?! Abhishek Arya of Google is taking the stage @ #OSSummit Europe! Dive into the schedule, showcasing a dynamic lineup at the forefront of all things #OpenSource: hubs.la/Q02JkQBm0. Register & join us 16-18 September in Vienna, Austria! hubs.la/Q02JkjC70

The DARPA's AI Cyber Challenge is in full swing with its Semifinal Competition. Learn how competitors can take advantage of Google resources for the challenge and what we're doing at the AIxCC event at DEF CON 32 in Las Vegas next week: blog.google/technology/saf…

As we look to the future of open source, we're investing in improving security posture of open source projects and ecosystems. 💡 Learn more about our efforts to secure open source supply chains ⬇️ goo.gle/3X1QZKv

AI on Java fuzzing!

This week we've added another 8 trophies to OSS-Fuzz-Gen (for a total of 14)! These are vulnerabilities found by LLM-generated harnesses. The interesting bit here is many of these are in well-fuzzed projects with thousands of hours of fuzzing already. github.com/google/oss-fuz…

Join Abhishek Arya Abhishek Arya at Open Source Summit EU as he discusses how Standards, Automation and AI can transform OSS security, scaling our defenses to meet growing threats. #OSSummit Listen Sept. 16 → goo.gle/47ouWBb

Live now at #OSSummit: Securing the Software Commons: Standards, Automation, and AI for a Resilient Open Source Future - Abhishek Arya, Principal Engineer, Google Open Source and Supply Chain Security, Google Keynote Livestream: bit.ly/47vTfO0

🔑 Abhishek Arya from Google delivers a keynote on "Securing the Software Commons: Standards, Automation, & AI for a Resilient Open Source Future." He highlights frameworks like SLSA, OpenSSF Scorecard, and more for building a safe and secure software supply chain. #OSSSummit

Sharing slides and video for my keynote at OSS EU'24: "Securing the software commons: Standards, Automation, and AI for a Resilient Open Source Future" Slides: drive.google.com/file/d/186iq3Y… Video: youtube.com/watch?v=NwI2Mk…

🚨 Our amazing #FUZZING'24 keynotes are online! "Reasons for the Unreasonable Success of Fuzzing" by Thomas Dullien (Halvar Flake) youtu.be/Jd1hItbf52k "Is 'AI' useful for fuzzing?" by Brendan Dolan-Gavitt (Brendan Dolan-Gavitt) youtu.be/4BPJXmrdmls //Marcel Böhme👨‍🔬, László Szekeres