Google calls on government to take new action to protect open source software projects

Google calls on government to take new action to protect open source software projects Following a summit on open-source security hosted at the White House Thursday Google has called for increasing government involvement in identifying and securing critical open-source software projects. In a blog post published shortly after the summit Walker wrote. The blog post also called for an increase in public and private investment to keep the open-source ecosystem secure funding and review of such projects are conducted by the private sector. The White House had not responded to a request for comment by time of publication. The shortage of funding and resources for open-source development has long been raised as a security concern and has re-emerged as a key issue after the discovery of a serious bug in the Log4j Java library We need a public-private partnership to identify a list of critical open source projects — with criticality determined based on the influence and importance of a project — to help prioritize and allocate resources for the most essential security assessments and improvements Open source software code is available to the public said that collaboration between government and the private sector was needed for open-source funding and management.