Open Source Technology Improvement Fund
The Open Source Technology Improvement Fund is a corporate non-profit dedicated to securing open source apps that we all depend on. Securing software isn’t easy, and we know what it takes to succeed. By facilitating security audits and reviews, OSTIF makes it easy for projects to significantly improve security.
Better Security Through A Massive Community
Through the Open Source Technology Improvement Fund, projects have been able to find and fix critical security bugs.
100+
partner projects
1000+
world class security experts
13000+
hours of security review
130+
severe bugs patched
billions
protected
Support the OSTIF Mission
Open-source projects keep today’s Internet infrastructure afloat. They are critical for the operation of every webserver, every browser, and every banking platform. And they are cared for by a surprisingly small group of people with a limited amount of time. Without dedicated security experts, these projects often don’t get the attention they require.
We can do it with help from supporters like you.
Scala Audit Complete! The Open Source Technology Improvement Fund is proud to share the results of our security audit of Scala. Scala is a modern multi-paradigm programming language designed to express common programming… Read more »
Disclosing the BADHOST Vulnerability in Starlette BADHOST OSTIF is disclosing the expanded details of the BadHost vulnerability in Starlette as slow uptake of updated versions of Starlette and discovery of more vulnerable live services has caused… Read more »
Hack to the Future: The Impact and Legacy of the DARPA AIxCC Challenge AIxCC Competition Background & Results: In 2023, DARPA announced a two-year long competition called the Artificial Intelligence Cyber Challenge (AIxCC) with the goal to safeguard open source software used in… Read more »