The Rust Foundation has announced that it is establishing a security team with support from the OpenSSF’s Alpha-Omega Initiative and Rust Foundation member JFrog. “The first initiative for the new Security Team will be to undertake a security audit and threat modeling exercises to identify how security can be economically maintained going forward.”
Note
- With increased attention on supply chain security, expect more security processes and teams to be incorporated into services and products used to develop code. With luck tools will be developed, such as the govulcheck tool from the Go initiative, to flag code for vulnerabilities, making it easier to fix and release secure code.
