CISA Put Securing Open Source Software on the Roadmap

The US government’s top cybersecurity agency, CISA, has issued an eight-page document outlining goals and objectives for securing open source software, aiming to reduce software supply-chain attacks. The agency plans to work with open source software communities, as well as international organizations, to better understand and help improve the security of software. The CISA also wants to identify and manage risks related to the use of open source components in federal software and critical infrastructure.