We would like to thank our sponsors Private Internet Access and DuckDuckGo for helping to fund this security review, as well as all of our donors and individual supporters. This crucial work doesn't happen without support from the community.
The quick and dirty:
OpenSSL version 1.1.1 was evaluated with special foci on new TLS 1.3 features
OSTIF is Partnering with the Internet Bug Bounty and HackerOne for Bug Bounties!
The Open Source Technology Improvement Fund will be partnering with the Internet Bug Bounty and HackerOne in a partnership that will get our supported projects listed on HackerOne with no overhead costs!
HackerOne is the de-facto site for bug hunters around the world,
It has been a while since we have done a round of updates on what we are working on.
We have a number of projects that are currently active and more starting up. Throughout 2019 we expect to finish more than twice as many total projects and to continue with our current commitments to transparency