Formerly Singularity, the newly named Apptainer project delivers a feature set that supports both application and microservice use cases

SAN FRANCISCO, Calif.,  — November 30, 2021— The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it will host the Apptainer project. Formerly the Singularity project, Apptainer is the most widely used container system for High-Performance (HPC) computing and is one of the container systems uniquely suited for both enterprise and HPC use cases. It is designed to execute applications at bare-metal performance while being secure, portable and completely reproducible.

“The Apptainer project has had massive growth and needs a neutral home with proven open source governance to support its next development and adoption phase,” said Gregory Kurtzer, CEO of CIQ and Founder and Project Lead of Singularity/Apptainer. “The Linux Foundation is the natural host for Apptainer, where it can also collaborate with the Cloud Native Computing Foundation, Open Container Initiative, OpenHPC and other projects to expand its ecosystem.”

The HPC community for many years has been isolated from the enterprise and cloud sectors of

the ecosystem, but those barriers are starting to come down. HPC consumers are looking to modernize and take advantage of enterprise tech and enterprises are looking to make use of decades of optimizations in performance and parallelization through use-cases like Artificial Intelligence (AI), Machine Learning (ML) and compute- and data-driven analytics. “The Apptainer project is at a pivotal moment in its growth and evolution,” said Mike Dolan, senior vice president and general manager of projects at the Linux Foundation. “We look forward to supporting this community and enabling cross collaboration with even more open source developers and technologists to expand its ecosystem of contributors.” Apptainer features include: public/private key signing of containers; Docker- and OCI-compatible; container encryption and integration with Vault and other management platforms; single-file SIF executable container format; runs “rootless” and prohibits privilege escalation within the container; and supports GPU, FPGA, high-speed networks and filesystems, among others.

For more information about Apptainer, please visit: http://www.apptainer.org

Supporting Comments

“For an open source project to be healthy, there needs to be a clear separation between the project and commercial support options.  Both are critical, and I see this move as a step in the right direction to ensure commercial viability and a healthy community,” said Brent Gorda, HPC veteran.

AMD

“The Apptainer project has been an important step for containerization in high performance computing, driving an open-source platform that allows users to run complex applications on HPC clusters in a simple, portable, and reproducible way. We’re excited to see the Singularity project rebranded as the Apptainer project under The Linux Foundation and continue to provide the HPC community access to open-source container software that’s critical for HPC,” said Brock Taylor, Global HPC Solutions Director, AMD.

Berkeley Lab

“As the founding organization, we are thrilled that Singularity[1] has experienced such broad adoption in HPC, and we are really looking forward to seeing its maturing to the next level now,” said Gary Jung, Scientific Computing Group Lead at LBNL. “The time has never been better to move this technology to the Linux Foundation, where both the HPC and Enterprise communities can collaborate and build this container system for the future.”

Fermilab

“The health of Apptainer as an open source project is of vital importance to the High Energy Physics community and the OSG consortium which both use Apptainer in their High Throughput Computing and High Performance Computing every day to advance their science missions. The CIO of Fermilab and the OSG executive team endorse this move of the Apptainer open source project to Linux Foundation hosting and expect it to help ensure the long term health of the project,” said Dave Dykstra, Fermilab.

HPCNow!

“For a global HPC consulting company like HPCNow!, moving Apptainer to a Linux Foundation project not only represents another massive step in maturity level but also ensures the future of this extraordinary technology. The evolution of Apptainer is extremely important for our clients, who widely adopted this strategic software to guarantee portability, long-term reproducibility, and performance,” said Jordi Blasco, CTO at HPCNow.

Intel

“Intel is a long supporter of the power of open source to unite and accelerate ecosystems.  As a user of Apptainer, we strongly support the contribution of Apptainer to the Linux Foundation and look forward to seeing the communities’ engagement in driving this project forward,” said Sanjiv Shah, Vice President – Software and Advanced Technology Group, General Manager of Developer Software Engineering.

Sandia National Laboratories

“Apptainer can support scalable containers on HPC and Cloud infrastructure, so its move to the Linux Foundation is both exciting and a natural evolution of this important technology,” said Andrew Younge from Sandia National Laboratories. “We’re looking forward to continuing to work with the project and participating in the growing community at the Linux Foundation.”

About the Linux Foundation

Founded in 2000, the Linux Foundation and its projects are supported by more than 1,800 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, Hyperledger, RISC-V, and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contacts

Jennifer Cloer

503-867-2304

jennifer@storychangesculture.com


[1] Singularity is the former name of the Apptainer project.

Open source software tools and services are often created quickly and out of necessity. Linus Torvalds, for example, created the first version of git in a weekend when the Linux kernel team could no longer use BitKeeper for Source Control Management. 

sigstore was created earlier this year to address the massive gap for an easy, trustable and efficient digital signing tool to confirm the provenance (origin) of software. Since March 2021 sigstore has been growing rapidly and is being used for various projects. This includes Kubernetes, one of the world’s largest open source projects.

But like Let’s Encrypt and the Linux Kernel, sigstore requires resources. Building the first version of the tool is different from bringing together resources to enable widespread adoption and support it for the long term. That’s why we’re excited to announce today that the project has received generous contributions from Chainguard, Cisco, HPE, Google, Red Hat and VMware to conduct an extensive security audit and hire a full-time developer relations engineer. 

The reality is that today the majority of software isn’t digitally signed. Without signatures, there’s little evidence of the software’s provenance,  so most software consumed is cryptographically untrusted. With sigstore, developers can digitally sign containers, artifacts, config-as-code, policy, and any given computer file. sigstore has the potential of becoming to digital signing what Let’s Encrypt is to HTTPS. 

“By working to eliminate the requirements for specialized skills in cryptography, sigstore is committed to establishing trust and transparency in the open source supply chain. Removing this exclusivity is key to increasing developers’ access to cryptographic signing and creating an open log for accountability. Red Hat is proud to support sigstore’s constant commitment to open source in the supply chain security space,” said Luke Hinds, Senior Principal Software Engineer, Red Hat.

For more information about sigstore, please visit: https://blog.sigstore.dev/

More than 40 companies commit to build open source ecosystem to enable next-generation architectures for microservices use cases

Napa Valley, Calif., Linux Foundation Membership Summit, November 2, 2021 — The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced the NextArch Foundation. The new Foundation is a neutral home for open source developers and contributors to build next-generation architecture that can support compatibility between an increasing array of microservices.

Cloud-native computing, Artificial Intelligence (AI), the Internet of Things (IoT), Edge computing and much more have led businesses down a path of massive opportunity and transformation. According to market research, the global digital transformation market size was valued at USD 336.14 billion in 2020 and is expected to grow at a compound annual growth rate (CAGR) of 23.6 percent from 2021 to 2028. But a lack of intelligent, centralized architecture is preventing enterprises and the developers who are creating innovation based on these technologies to fully realize their potential.

“Developers today have to make what feel like impossible decisions among different technical infrastructures and the proper tool for a variety of problems,” said Jim Zemlin, Executive Director of the Linux Foundation. “Every tool brings learning costs and complexities that developers don’t have the time to navigate yet there’s the expectation that they keep up with accelerated development and innovation. NextArch Foundation will improve ease of use and reduce the cost for developers to drive the evolution of next-generation technology architectures.”

Next-generation architecture describes a variety of innovations in architecture, from data storage and heterogeneous hardware to engineering productivity, telecommunications and much more. Until now, there has been no ecosystem to address this massive challenge. NextArch will leverage infrastructure abstraction solutions through architecture and design and automate development, operations and project processes to increase the autonomy of development teams. Enterprises will gain easy to use and cost-effective tools to solve the problems of productization and commercialization in their digital transformation journey.

“NextArch Foundation understands that solving the biggest technology challenges of our time requires building an open source ecosystem and fostering collaboration,” said Mike Dolan, senior vice president and general manager of projects at Linux Foundation. “This is an important effort with a big mission and it can only be done in the open source community. We are happy to support this community and help build open governance practices that benefit developers throughout its ecosystem.”

“I am really excited to be involved with the NextArch Foundation in an advisory role. In the past five years, we’ve witnessed major advances in various technology domains such as cloud, artificial intelligence, IoT, AR/VR, quantum computing, serverless computing, and many more. These advances have produced enormous amounts of open source software assets. A core challenge is bridging all these technologies and software assets under a single next generation architecture that supports diverse computing environments and enables enterprise digital transformation. NextArch Foundation will be at the heart of this effort, building a community and enabling an ecosystem that brings together organizations and communities to address this challenge in an open environment,” said Dr. Ibrahim Haddad, Executive Director of LF AI & Data.

For more information about the NextArch Foundation or to contribute, please visit: nextarch.io

Supporting Comments

Aftership

“Congratulations on launching the NextArch Foundation! By being part of the NextArch Foundation, AfterShip hopes to build a next-generation technical architecture to better serve customers around the world,” said Xiaojun Hong, CTO of AfterShip.

Agora

“It is a great honor to be part of the NextArch Foundation and celebrate its launch! In recent years, we have continuously explored and practiced next-generation architecture technologies in the audio and video field, and have paid more attention to open source contributions. I am very pleased to see that NextArch Foundation has allowed open source architecture projects to have a platform for comprehensive development. I hope more developers can participate and jointly build a better and more open next-generation architecture open source ecosystem,” said Yue Feng, Co-founder & Technical VP of Agora.

Alauda

“The rise of cloud native technologies is shaping the future of enterprise IT. The plethora of technological innovations and architectural advancements are forming the basis of digitization strategies for modern organizations. We are delighted to see the formation of the NextArch Foundation. We believe it will foster a vibrant ecosystem of technologies, systems and processes that will help define the next generation of enterprise architecture. We look forward to contributing to this mission,” said Kai Chen, Co-founder & CTO of Alauda.

Ampere

 “Ampere is excited to participate in the launch of the NextArch Foundation, building upon the momentum started by the TARS Foundation, by collaborating and developing both technology and standards for the next generation of microservices,” said Mauri Whalen, Senior Vice President of Software Engineering at Ampere.

API7

“Congratulations on the launch of NextArch Foundation! I hope that with the support of the NextArch Foundation, more open source projects will continue to develop, build an active open source community, and create a prosperous open source ecosystem. At the same time, NextArch Foundation will help enterprises find architectural solutions faster, which will make great progress to the underlying infrastructure,” said Ming Wen, CEO of API7.

Arm

“As member of the Linux Foundation and the TARS Foundation, Arm is pleased to see the establishment of a neutral and non-profit NextArch Foundation that will help integrate upstream and downstream open-source technology resources, supporting the growth of heterogeneous SoCs for computing infrastructure,” said Frank Zou, VP of China GTM, Infrastructure Line of Business, Arm.

Baidu

“Congratulations on the launch of NextArch Foundation! Together with the NextArch Foundation, we hope to realize the technological revolution of the future-oriented next-generation microservices architecture and accelerate the cloud-native transformation of enterprise architecture,” said Ran Zheng, Outstanding R&D Architect of Baidu.

CAICT

“Congratulations to the establishment of NextArch Foundation! As an inevitable trend of enterprise, digital transformation has spawned numerous tools and tech, which impose challenges on developers when they need to utilize new tech. Under the current environment, we are glad to see NextArch Foundation working on the evolution of next-generation architect or to mitigate pressure on developers,” said Yili Chen, director of cloud computing research dept. CAICT.

CESI

“The next-generation architecture is the future development trend. The China Electronics Engineering Design Institute has always actively participated in and promoted the exploration of cutting-edge technologies. As early as 2019, it led the writing of the “Next Generation Cloud Computing White Paper” in conjunction with China’s leading cloud computing companies. Personally, I am glad to be able to launch the NextArch Foundation together with the Linux Foundation this time. In the future, we will jointly explore technology research, standards, evaluation, and industrialization services,” said Liyun Yang, Director of the Cloud Computing Research Office.

Coredge.io

“We are extremely delighted to be part of the NextArch Foundation initiative. This is a great initiative to take the software services delivery to next level and we assure our active contribution to growth of each and every aspect of NextArch Foundation and future innovations,” said Sagar Nangare, Coredge.io Director of Product Marketing and Growth.

DataCanvas

“It’s a great pleasure to be part of the effort to launch the NextArch Foundation. With fast rising demand from data science and real-time applications, it’s a defining moment of software architectural change in the coming decade. Millions of businesses are making decisions every day to upgrade their IT architecture to handle the sheer size workload during digital transformation, it’s still an uncertain process lacking a clear paradigm and guidance. We are very happy to see NextArch can stand up and unite leading organizations to face this challenge. NextArch will surely be an innovation center to help across the world and we are looking forward to engaging as an initial member,” said Lei Fang, Board Chairman of DataCanvas.

DCloud

“Congratulations on the creation of NextArch Foundation! I hope that NextArch Foundation can incubate more outstanding, open source cloud-native projects and help more companies accelerate their digital transformation,” said Hongbao Cui, CTO of DCloud.

DiDi

“Congratulations on the creation of the NextArch Foundation! We hope that the NextArch Foundation can help more users find solutions to the development of architecture in the current open source software and hardware more quickly, which will contribute enormous value to the open source community,” said Yi Yang, Open Source Committee Chair of DiDi.

Digital China

“Congratulations on the launch of NextArch Foundation and look forward to the cooperation with NextArch Foundation. We believe that can provide better services and solutions for the open-source ecological construction of customer introduction, channel expansion, technology and product innovation, technology accumulation, etc., and to accelerate the realization of the value of open-source technology in the client,” said Yang Shen, Vice President & CIO of Digital China Group.

Eolink

“Congratulations on the launch of NextArch Foundation! As a firm supporter of the API economy, Eolink sees the great value that API can provide for various technical architectures in the past and the foreseeable future. I hope that NextArch Foundation can help us quickly find the current best practices for open source software development. Together, we hope to help implement open source software and hardware in different fields by integrating with API economy,” said Haozhen Liu, CEO of Eolink.

GrowingIO

“Congratulations to the NextArch Foundation! We hope to contribute to the development of the open source ecosystem and open source trends with NextArch Foundation and other partners in the future. We believe participating in NextArch will cultivate open cooperation and empower decision-making processes,” said Dingding Ye, CTO of GrowingIO.

HarmonyCloud

“On behalf of HarmonyCloud, I would like to congratulate the launch of NextArch Foundation. In the future, we will jointly explore the best solution for the development of open source software and hardware architecture, and I look forward to creating more possibilities with the help of NextArch Foundation,” said Aoyu Wang, CEO of HarmonyCloud.

Huayou Tech

“In recent years, despite the COVID-19 pandemic, the support from cloud native, container, DevOps, microservices and other technologies has pushed forward digital transformation. In the face of a digital age, architecture technology will inevitably be upgraded, and the next generation of architecture technology will also emerge. The establishment of NextArch Foundation is in line with the trend and will surely lead the trend. Congratulations on the launch of NextArch Foundation!” said Tianguo Xiao, Co-founder & CEO of Huayou Tech.

JD

“We are honored to witness the birth of a legend. Congratulations on the launch of NextArch Foundation! As a company with a technological belief, we are in an unprecedented wave of technological change. We always believe that in the continuous evolution of the next-generation technology architecture, developer productivity engineering (DPE) and developer experience engineering (DXE) will become the mainstream consensus of the industry. Together with the open-source spirit, it will act as the source of power to develop future technical efficiency. I am delighted that this coincides with the vision of NextArch Foundation. We hope to work with NextArch Foundation to uphold the original intention of technology to change the world and jointly promote the implementation of enterprise digital transformation and the arrival of the data-driven intelligent era,” said Xuefeng Shi, Engineering Efficiency Expert of JD.

JiHu (GitLab)

“Congratulations on the establishment of the NextArch Foundation. JiHu (GitLab) is committed to promoting DevOps and the development of open source ecology based on the principle of core openness, which coincides with the philosophy of the NextArch Foundation. We hope that NextArch Foundation can flourish and JiHu (GitLab) will contribute its own strength,” said Sam Chen, CEO of JiHu (GitLab).

Kong

“Kong is proud to be part of this momentous launch of the NextArch Foundation. Multi-cloud is the future, and it’s exciting to see such a great set of collaborators coming together to make heterogeneous infrastructure more accessible to development teams,” said Michael Heap, Director of Developer Relations at Kong.

Mulan Community

“With the advent of the distributed cloud era, computing, storage, and data technologies must go through innovations. It is critical to have a forward-looking perspective of the next-generation technology architecture. Open source is the best way to promote technological development and the industrial ecosystem. Mulan Community is excited to work with the Linux Foundation to advance technological and industrial transformation and development,” said Hang Geng, Community Manager of Mulan Community.

Nanjing University

“Architecture determines value, and decentralization is the future. Overcoming the limitations of the next-generation software architecture and adapting to the architectural needs of the cloud era will help the development of the digital economy. As the first Chinese academic institution dedicated to comprehensive research, teaching and industrial cooperation between DevOps and cloud native, DevOps+ Research Laboratory of Nanjing University is willing to work with the Linux Foundation to explore the next generation of cloud native architecture and promote technological change,” said Zhang He, Director of DevOps+ Research Laboratory of Nanjing University.

OneFlow

“Congratulations on the launch of the NextArch Foundation! It is my great honor to witness the birth of such profound an effort. In the particular field of deep learning, we believe that only next generation architecture can address the unprecedented challenges of big data, and big computing. Furthermore, only through collaboration with the open source community can such next generation technology be developed. Looking forward to working together with NextArch foundation in the future,” said Jinhui Yuan, Founder of OneFlow Inc.

Ramanujan College, University of Delhi

“It is a great opportunity for Ramanujan College, University of Delhi to join as a member of the NextArch Foundation and participate in the open-source projects and the technical community. We are happy to be a part of this ecosystem,” said Vipin Rathi, Asst. Professor, Chairperson Hyperledger Telecom SIG.

SphereEx

“We are excited to see how many open source projects for enterprise digital transformation will develop with the help of the NextArch Foundation. SphereEx will continue to maintain a cooperative relationship with NextArch Foundation, realize the open source and open management concepts, and strive to build a new generation of technology architecture ecosystem with global collaboration,” said Liang Zhang, Co-founder and CEO of SphereEx.

SRS

“Congratulations! Tech changes the world, open source changes the tech. As one of video and live streaming open source projects, SRS makes it easy to build video platforms. There are lots of open source projects like FFmpeg, WebRTC, x264, libopus, gstreamer, SRS, etc, enabling the video developer to build large scale video products, for entertainment, online meeting, education, communication and cloud games,” said Winlin, Maintainer of SRS.

Stream Native

“Nowadays, the open source ecosystem is becoming more comprehensive, and the digital transformation of enterprises is the current trend. To meet the needs of today and the future, we should face the heterogeneous infrastructure and multi-cloud scenarios to jointly discuss the next-generation technical architecture. StreamNative is honored to participate in the NextArch Foundation and hopes that the Foundation will help more companies find solutions that meet the development of new open source software, hardware and software architectures, and help the industry’s digital transformation,” said Jia Zhai, Co-founder of StreamNative.

Swoole

“Congratulations on the creation of the NextArch Foundation! We look forward to the open source software solutions provided by the NextArch Foundation to help Chinese companies build a stable and reliable software service architecture, effectively improving R&D efficiency and reducing costs for companies,” said Tianfeng Han, CEO of Swoole.

TAL

“Congratulations on the launch of the NextArch Foundation. We hope that NextArch Foundation will connect different technology companies, like TAL, to create and build open source software and hardware technology and promote open source business development. The collaboration from NextArch will encourage the development of IT technology through open source and technological innovation!” said Mi Tian, CTO of TAL.

Tapdata

“NextArch Foundation is a very creative foundation. Today, open source software has become the mainstream, effectively combining excellent open source software to form an organic collaboration architecture that can provide more direct technical value for the overall solution of the enterprise. As a technical product focusing on the real-time data service track (Real Time DaaS), Tapdata will also actively embrace open source and contribute to the NextArch Foundation,” said Chairman of Tapdata Founder & CEO, MongoDB Chinese Community, Tang Jianfa.

Tencent

“Tencent is excited to join the NextArch Foundation, which focuses on next-generation technology architecture and future open source innovation under the Linux Foundation. It is clear that technological innovation worldwide has accelerated, thus requiring better heterogeneous and multi-cloud infrastructure. We hope to actively participate in the development of next generation architecture. Through the NextArch Foundation, we are confident to help more enterprises and industries to build the next-generation architecture optimal for business growth and a more comprehensive open source ecosystem,” said Mark Shan, Chairman of Tencent Open Source Alliance.

Tongcheng-Elong

“Congratulations on the launch of NextArch Foundation. I am honored to be a member of NextArch Foundation. With the continuous progress of technological innovation, it is an inevitable trend to develop the next-generation architectures. I hope that, with the support of NextArch Foundation, more and more developers will participate and work together to build a better next-generation open source ecosystem,” said Xiaobo Wang, CTO of LY.com.

VMware

“Congratulations on launching the NextArch Foundation! The mission and goals of NextArch Foundation are well aligned with our effort in OSS projects in areas such as cloud native for modern apps, blockchain, distributed edge/IoT, heterogeneous compute/storage/network and AI/ML accelerators. Look forward to more collaboration with the NextArch Foundation,” said Alan Ren, General Manager of VMware R&D China.

Unicom Digital Tech

“Unicom Digital Tech is fortunate to witness the establishment of NextArch Foundation, and hope that this organization can effectively promote the healthy and robust development of the national software industry, increase the company’s technical strength, and feedback the transformation of basic software and hardware and benefit everyone, said” Qiang Feng, Unicom Digital Tech.

Xiaomi

“Congratulations on the establishment of NextArch Foundation! I hope NextArch Foundation can help us find solutions to the development of hybrid cloud architecture more quickly, and help us develop the open source ecosystem suitable for the digital transformation of Xiaomi,” said Zuoyan Qin, Chairman of Xiaomi Open Source Committee.

XILE

“Congratulations on the launch of the NextArch Foundation! We hope that NextArch Foundation can lead us to release greater computing power, establish more efficient connections, and provide more secure services. Let’s build the next-generation internet together!” said Yu Cao, co-founder of XILE.

XSKY

“With the establishment of NextArch Foundation, next generation architecture is opening a new era in global development. Together with other members, XSKY will spare no effort to push forward the construction of a broader ecosystem. We aim to achieve a landing storage approach of high-availability and high-reliability for users with emerging architecture,” said Haomai Wang, CTO of XSKY.

Yashi

“Congratulations on the creation of NextArch Foundation! The open source movement requires more companies and individuals to participate extensively. Yashi looks forward to working with NextArch Foundation and contributing to the open source software architecture solutions,” said Qiangning Hong, CTO of Yashi.

YeePay

“Congratulations to the NextArch foundation! We hope to help YeePay build a strong digital trading service platform to serve global merchants through Inclusive and advanced technology,” said Wanlong Lu, Director of YeePay.

YunJi Tech

“The establishment of NextArch Foundation is a landmark event, which means that the industry unites and considers the future of converged infrastructure and digital transformation. Fortunately to be a TOC member, congratulations to NextArch,” said Wei Lou (Jet), Tech VP of Yunji Tech.

Zenlayer

“Companies increasingly require services that support their heterogeneous, resource-intensive edge deployments. Zenlayer is fully aligned with the NextArch Foundation’s vision of improving heterogeneous infrastructure design. The company enables the dynamic deployment of microservices between public and edge clouds, and among edge locations. This groundbreaking approach makes it easy to access critical resources on-demand, and from any location. Zenlayer is proud to be a founding member of the NextArch Foundation, and is committed to building the next generation of edge cloud,” said Joe Zhu, Zenlayer CEO and Founder.

360

“It is a great honor for 360 to join the NextArch Foundation, which focuses on next-generation architecture and future open source innovation within the Linux Foundation. With the further acceleration of global technological development and transformation, enterprise level hybrid cloud and multi-cloud heterogeneity will become the trend of infrastructure technology development. We see joining the NextArch Foundation as an opportunity to actively participate in the technological transformation of the next-generation architecture, jointly promote the evolution of the next-generation architecture technology. We look forward to promoting the sustainable development of the open source ecosystem along with other members,” said Wang Feng, Head of Basic Cloud Architecture, 360.

4Paradigm

“Congratulations! Glad to see the creation of NextArch Foundation. NextArch provides great initiative to inspire developers and contributors building outstanding architecture solutions. 4Paradigm looks forward to sharing architecture ideas based on Enterprise AI transformation experience, and contributing open source solutions to the NextArch community!”  said Zhao Zheng, VP of Engineering, 4Paradigm.

About the Linux Foundation

Founded in 2000, the Linux Foundation and its projects are supported by more than 1,800 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, Hyperledger, RISC-V and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contacts

Jennifer Cloer

503-867-2304

jennifer@storychangesculture.com

Graviti leads community of developers and data scientists to create data standards and formats that enable contributions by anyone

Napa Valley, Calif., Linux Foundation Membership Summit, November 2, 2021 — The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced the new Project OpenBytes spearheaded by Graviti. Project OpenBytes is dedicated to making open data more available and accessible through the creation of data standards and formats.

Edward Cui is the founder of Graviti and a former machine learning expert within Uber’s Advanced Technologies Group. “For a long time, scores of AI projects were held up by a general lack of high-quality data from real use cases,” Cui said. “Acquiring higher quality data is paramount if AI development is to progress. To accomplish that, an open data community built on collaboration and innovation is urgently needed. Graviti believes it’s our social responsibility to play our part.”

By creating an open data standard and format, Project OpenBytes can reduce data contributors’ liability risks. Dataset holders are often reluctant to share their datasets publicly due to their lack of knowledge on various data licenses. If data contributors understand their ownership of data is well protected and their data will not be misused, more open data becomes accessible.

Project OpenBytes will also create a standard format of data published, shared, and exchanged on its open platform. A unified format will help data contributors and consumers easily find the relevant data they need and make collaboration easier. These OpenBytes functions will make high-quality data more available and accessible, which is significantly valuable to the whole AI community and will save a large amount of monetary and labor resources on repetitive data collecting.

“Project OpenBytes and community will benefit all AI developers, both academic and professional and at both large and small enterprises, by enabling access to more high-quality open datasets and making AI deployment faster and easier,” said Mike Dolan, general manager and senior vice president of Projects at the Linux Foundation.

The largest tech companies have already realized the potential of open data and how it can lead to novel academic machine learning breakthroughs and generate significant business value. However, there isn’t a well-established open data community with neutral and transparent governance across various organizations in a collaborative effort. Under the governance of the Linux Foundation, OpenBytes aims to create data standards and formats, enable contributions of good-quality data and, more importantly, be governed in a collaborative and transparent way.

For more information, please visit ​​https://www.openbytes.io

Supporting Quotes

ElectrifAi

“As one of the earliest AI/ML companies in the U.S., ElectrifAi is happy to support the OpenBytes project. We believe OpenBytes will help in the sharing of trusted datasets and accelerate practical AI/ML to solve real business problems,” said Luming Wang, CTO, ElectrifAi.

Jina AI

“The future of software is being eaten by open source, as well as data-sharing. OpenByte’s announcement is a great signal for all developers on the accessibility of datasets. We are very excited to see standardized datasets available to a broader community, which will massively benefit AI engineers,” said Bing He, Co-founder & COO at Jina AI.

Motional

“Project OpenBytes will be essential to establish a vibrant open source dataset community. At Motional we are happy to contribute our freely available nuScenes and nuPlan datasets to this community. By standardizing datasets and licenses, we are making an important step towards interoperable machine learning systems and in particular safer autonomous vehicles,” said Holger Caesar, Data-Algorithms Team Lead at Motional.

Predibase

“At Predibase, we’re building the open source Ludwig AI project to make state-of-the-art deep learning accessible to everyone, but the biggest barrier to tackling more tasks has always been the lack of standards for training datasets over unstructured data like text and images. Project OpenBytes provides a common structure to unstructured data that makes it possible for low-code deep learning tools like Ludwig to automate a host of advanced computer vision, NLP, and other machine learning tasks that previously required bespoke solutions. I’m excited to see how the combination of OpenBytes and Ludwig can enable data scientists and ML engineers to spend less time figuring out how to stitch data and models together, and more time solving their business problems.”

Zilliz

“Data is crucial to the success of any Artificial Intelligence project. By sharing open datasets, Project OpenBytes will help more developers to understand, develop, and adopt AI/ML technologies. Project OpenBytes will be a fundamental component of the open-source AI ecosystem. At Zilliz, we are glad to participate and make contributions to this significant initiative,” said Jun Gu, Partner of Zilliz.

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page:  https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contact

Jennifer Cloer

Story Changes Culture

503-867-2304

jennifer@storychangesculture.com

More than 720,000 technical contributors and 1,700 member companies have access to security metrics on the LFX platform; tens of millions of developers rely on projects hosted across the platform

Napa Valley, Calif., Linux Foundation Membership Summit, November 2, 2021 — The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it has enhanced its free LFX Security offering so open source projects can secure their code and reduce non-inclusive language.

The LFX platform hosts community tools for security, fundraising, community growth, project health, mentorship and more. It supports projects and empowers open source teams to write better, more secure code, drive engagement and grow sustainable ecosystems.

The LFX Security module now includes automatic scanning for secrets-in-code and non-inclusive language, adding to its existing comprehensive automated vulnerability detection capabilities. Software security firm BluBracket has contributed this functionality to open source software projects under LFX as part of its mission of making software safer and more secure. This functionality builds on contributions from leader in developer security, Snyk, now making LFX the leading vulnerability detection platform for the open source community.

The need for a community-supported and freely available code scanning is clear, especially in light of recent attacks on core software projects and recent the White House Executive Order calling for improved software supply chain security. LFX is the first and only community tool designed to make software projects of all kinds more secure and inclusive.

LFX Security now includes:

  • Vulnerabilities Detection: Detect vulnerabilities in open source components and dependencies and provide fixes and recommendations to those vulnerabilities. LFX tracks how many known vulnerabilities have been found in open source Projects, identifies if those vulnerabilities have been fixed in code commits and then reports on the number of fixes per project through an intuitive dashboard. Fixing known open source vulnerabilities in open source projects helps cleanse software supply chains at their source and greatly enhances the quality and security of code further downstream in development pipelines. Snykhas provided this functionality for the community and helped open source software projects remediate nearly 12,000 known security vulnerabilities in their code.
  • Code Secrets: Detect secrets-in-code such as passwords, credentials, keys and access tokens both pre- and post-commit. These secrets are used by hackers to gain entry into repositories and other important code infrastructure. BluBracket is the leading provider of secrets detection technology in the industry and has contributed these features to the Linux Foundation LFX community.
  • Non-Inclusive Language: Detect non-inclusive language used in project code, which is a barrier in creating a welcoming and inclusive community. BluBracket worked with the Inclusive Naming Initiative on this functionality.

“The enhancement of LFX Security builds on its extensive functionality in vulnerability detection to add critical support for secrets-in-code and non-inclusive language,” said Jim Zemlin, executive director of the Linux Foundation. “It’s up to all of us to secure our software supply chain, and we are grateful to Snyk and BluBracket for their significant contributions to the open source community.”

“Securing our software supply chain has become the most critical task facing the software industry. We believe the Linux Foundation’s LFX security project is the absolute best way for critical software projects to secure their code. BluBracket is thrilled to provide key functionality to LFX Security, including offensive language detection and secrets scanning. These features are crucial for projects to be both safe and inclusive. We know that LFX Security will greatly enhance our software supply chain’s security, and we look forward to working with the community to keep code safe,” said Prakash Linga, Founder and CEO of BluBracket.

“With fortifying our global software supply chain more crucial than ever, we’re happy to contribute our developer security expertise and continue our support of the crucial work of the Linux Foundation,” said Jill Wilkins, Senior Director, Global Technical Alliances, Snyk. “By leveraging the LFX Community Platform, we’re proud to be part of an important effort that will help millions of developers worldwide to innovate securely.”

LFX Security will be further scaled out in 2022 to help solve challenges for hundreds of thousands of critical open source projects under the Open Source Security Foundation at Linux Foundation. LFX Security is free and available for use today at https://lfx.linuxfoundation.org/tools/security/

About BluBracket

By empowering developers to prevent security vulnerabilities early in the software development process and giving security professionals an automated and developer-friendly way to ensure code is secure, BluBracket is the first comprehensive solution for code security. More information can be found at www.blubracket.com

About Snyk

Snyk is the leader in developer security. We empower the world’s developers to build secure applications and equip security teams to meet the demands of the digital world. Our developer-first approach ensures organizations can secure all of the critical components of their applications from code to cloud, leading to increased developer productivity, revenue growth, customer satisfaction, cost savings and an overall improved security posture. Snyk’s Developer Security Platform automatically integrates with a developer’s workflow and is purpose-built for security teams to collaborate with their development teams. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce.

Snyk is recognized on the Forbes Cloud 100 2021, the 2021 CNBC Disruptor 50 and was named a Visionary in the 2021 Gartner Magic Quadrant for AST.

About the Linux Foundation

Founded in 2000, the Linux Foundation and its projects are supported by more than 1,800 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, Hyperledger, RISC-V and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org.

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contacts

Jennifer Cloer

for the Linux Foundation

503-867-2304

jennifer@storychangesculture.com

Industry leaders from technology, financial services, telecom, and cybersecurity sectors respond to Biden’s Executive Order, commit to a more secure future for software; open source luminary Brian Behlendorf becomes general manager

LOS ANGELES, Calif – KubeCon – October 13, 2021 –  The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it has raised $10 million in new investments to expand and support the Open Source Security Foundation (OpenSSF), a cross-industry collaboration that brings together multiple open source software initiatives under one umbrella to identify and fix cybersecurity vulnerabilities in open source software and develop improved tooling, training, research, best practices, and vulnerability disclosure practices. Open source luminary Brian Behlendorf will serve the OpenSSF community as General Manager. 

Financial commitments from Premier members include Amazon, Cisco, Dell Technologies, Ericsson, Meta, Fidelity, GitHub, Google, IBM, Intel, JPMorgan Chase, Microsoft, Morgan Stanley, Oracle, Red Hat, Snyk, and VMware. Additional commitments come from General members Aiven, Anchore, Apiiro, AuriStor, Codethink, Cybertrust Japan, Deepfence, Devgistics, DTCC, GitLab, Goldman Sachs, JFrog, Nutanix, StackHawk, Tencent, TideLift, and Wind River.

“This pan-industry commitment is answering the call from the White House to raise the baseline for our collective cybersecurity wellbeing, as well as ‘paying it forward’ to open source communities to help them create secure software from which we all benefit,” said Jim Zemlin, executive director at the Linux Foundation. “We’re pleased to have Brian Behlendorf’s leadership and extensive expertise on building and sustaining large communities and technical projects applied to this work. With the tremendous growth and pervasiveness of open source software, building cybersecurity practices and programs that scale is our biggest task at hand.”

According to industry reports (“2021 State of the Software Supply Chain,” by Sonatype), software supply chain attacks have increased 650 percent and are having a severe impact on business operations. In the wake of increasing security breaches, ransomware attacks, and other cybercrimes tied to open source software, government leaders worldwide are calling for private and public collaboration. Because open source software makes up at least 70 percent of all software (“2020 Open Source Security and Risk Analysis Report” by Synopsys), the OpenSSF offers the natural, neutral, and pan-industry forum to accelerate the security of the software supply chain. 

“There has never been a more exciting time to work in the open source community, and software supply chain security has never needed more of our attention,” said Brian Behlendorf, general manager, Open Source Security Foundation. “There is no single silver bullet for securing software supply chains.  Research, training, best practices, tooling and collaboration require the collective power of thousands of critical minds across our community. Funding for OpenSSF gives us the forum and resources to do this work.”

The OpenSSF is home to a variety of open source software, open standards, and other open content work for improving security. Examples include:

For more information about OpenSSF, please visit: https://openssf.org/

Premier Member Quotes

AWS

“Open source software plays an increasingly crucial role across the whole landscape of information security. Convening industry leaders to invest in developing policies, practices, tooling, and education around open source security benefits us all. AWS was a founding member of the Core Infrastructure Initiative in 2014, and we will now build on the relationships and investments that continue the mission by joining OpenSSF as a Premier Member. With our partners in this initiative, and as active participants in many open source communities, we will help raise the bar in the security of open source software,” said Mark Ryland, Director of the Office of the CISO at AWS.

Cisco

“OpenSSF will enable the community, across industries, to build tools and practices to secure the software supply chain for open source and beyond. This is crucial to the future of API and application security, which are fast becoming a primary attack vector for all business going forward,” says Vijoy Pandey, VP of Emerging Technologies & Incubation at Cisco. “At Cisco, we believe the application experience is the new brand, which demands better app velocity, trust, security, and availability. This belief drives our deep investment in application security and full-stack observability, which is why joining forces with this prestigious foundation and group as a trusted advisor and partner was a no-brainer for us.”

Dell Technologies 

“The Linux Foundation’s focus on security is fundamental to addressing the increasing risks associated with software,” said John Roese, Dell Technologies’ Global Chief Technology Officer. “The Open Source Security Foundation’s work will help us collectively make sure critical software programs and the end to end software delivery pipeline is secure and trustworthy.”

Ericsson

“As a leader in mobile communication, pioneering and driving 5G globally, security is at the core of the network infrastructure we build and deliver to our customers. In an industry increasingly built around open source and open standardization we are fully committed to address cybersecurity vulnerabilities in a collaborative effort. We are proud to join the Open Source Security Foundation as a founding member and we look forward to continue to work with the community and wider industry for a secure software supply chain, including the open source components,” says Erik Ekudden, Senior Vice President and Chief Technology Officer, Ericsson.

Fidelity

“Open Source Software plays a critical role in Fidelity’s technology strategy. We are proud to be part of the Open Source Security Foundation and to work with others to ensure that Open Source solutions and their supply chains are safe, secure, and reliable, enabling Fidelity to better serve our customers and clients,” said John Andrukonis, SVP, Fidelity Application Architecture.

GitHub

“The world runs on software, and most of that software includes and relies on open source,” said Mike Hanley, Chief Security Officer at GitHub. “As the home to more than 65 million developers around the world, we’re excited to continue partnering across the open source community and with other Open Source Security Foundation members to power a more secure, trustworthy future that will benefit everyone.”

Google

“We are doubling down on our OpenSSF commitment in the wake of rising open source software supply chain attacks and President Biden’s Executive Order,” said Eric Brewer, vice president of infrastructure and fellow at Google. “This decision is part of our White House pledge to spend $100 million to fund open source security foundations and follows a variety of investments we’ve made to support developers and security engineers across the public and private sectors. The OpenSSF is the best place for cross-industry leadership for these very challenging topics, and we look forward to working with the US and other governments to improve security worldwide.” 

IBM 

“IBM is deeply focused on developing and building highly secure hybrid cloud, AI and quantum-safe technologies that are designed to protect our clients’ most sensitive workloads both today and into the future,” said Jamie Thomas, General Manager, Strategy & Development and IBM Enterprise Security Executive. “As a long-time open source leader, IBM looks forward to working with the OSSF, our industry partners, and open source communities towards addressing the ever-increasing challenge of hardware and software open source supply chain security.”

Intel

“As a long-standing member of the open source software community, Intel contributes daily in the upstream projects we collaborate with,” said Greg Lavender, senior vice president, CTO, and general manager of Software and Advanced Technology at Intel Corporation. “Along with the Linux Foundation, we believe the Open Security Foundation (OpenSSF) is a unique opportunity to engage in projects and efforts focused on improving the quality and security for today and our future. Intel remains committed to providing contributions that benefit open source software supply chains and improving the security posture of critical projects on which our ecosystem depends.”

JPMorgan Chase

“JPMorgan Chase is deeply committed to working with the open source community to solve our most pressing security challenges. As a founding member of the Open Source Security Foundation, we have worked together to improve the security of open source and the integrity of all software. We commend the US Government’s recent initiative to raise awareness on this pressing topic and call to action the technology community to solve one of the most complex security challenges of our time.  We welcome the new members to OpenSSF and look forward to continuing the journey of innovation and bringing meaningful change to how we build, secure, and validate software,” said Pat Opet, Chief Information Security Officer, JPMorgan Chase & Co.

Microsoft

“As open source is now core to nearly every company’s technology strategy, securing open source software is an essential part of securing the supply chain for every company, including our own. All of us at Microsoft are excited to participate with others in contributing new investments to the Open Source Security Foundation and we look forward to building more secure software through community-driven efforts to create solutions that will help us all,” said Mark Russinovich, Azure CTO and Technical Fellow, Microsoft.

Morgan Stanley

“Whether we are leveraging open source in our own code, contribute to OSS projects, or consume OSS via technology we procure and utilize, the safety and security of OSS and the creation of a trustworthy supply chain is critical to all businesses. To that end, we are delighted to join the Linux Foundation’s Open Source Security Foundation project to collaborate with our cross-industry partners to improve the security, safety and trust in the OSS ecosystem,” said Neil Allen, Global Head of Cyber Security Engineering, Morgan Stanley.

Oracle

“As a contributing member of the open source software community and an inaugural Linux Foundation member, Oracle has a large number of developers that contribute to third-party open source projects daily,” said Wim Coekaerts, senior vice president of software development, Oracle. “Oracle looks forward to participating in the Open Source Security Foundation and working with other members to continue to strengthen the software supply chain, helping customers work more securely.”   

Red Hat

“Open source is pervasive in software solutions of all kinds, and cybersecurity attack rates are on the rise. Our customers look to Red Hat to provide trust and enhanced security in our open source based portfolio. Open source and community collaboration is the best way to solve big, industry-wide challenges, such as open source supply chain security. And that’s why we’re excited to join together with the Linux Foundation and other industry leaders so we can continue to improve the technologies and practices to build a more secure future from open source software,” said Chris Wright, senior vice president and CTO, Red Hat.

Snyk

“Open source is built by millions of empowered developers, who also need to secure this critical foundation of the digital world,” said Guy Podjarny, Founder & President, Snyk. “The vital work of the Linux Foundation and the OpenSSF ensures we collectively live up to this responsibility. The Snyk community is fully committed to this important, collaborative effort and we look forward to working closely with the other OpenSSF members to better secure OSS so it can continue to safely fuel innovation.”

VMware

“Every company that uses software should be concerned about their software supply chain,” said Kit Colbert, chief technology officer, VMware. “For two-plus years, VMware has engaged in contributions to open source projects in the broader software supply chain security space and invested in initiatives to help customers further strengthen their security policies and processes. As a member of the Open Source Security Foundation, we’re committed to collaborating across the industry to drive increased level of software supply chain security.”

General Member Quotes 

Apiiro

“Software supply chain risks are becoming pervasive, with the potential to slow application delivery and stunt innovation,” commented John Leon, VP of Business Development at Apiiro. “Managing application risk has become increasingly complex and requires visibility across the SDLC – including the supply chain. Apiiro is excited to partner with the open source community and support the Linux Foundation and OpenSSF as they power the collaboration that is vital to securing software.”

AuriStor

“AuriStor’s founders have contributed to the standardization of security protocols and open source development of security first software for more than 35 years. We view the OpenSSF, its working groups and projects, and those that participate in them as crucial to improving the security of every industry, service, and home.  The OpenSSF has the potential to make a significant difference in everyone’s future. We encourage all members of the software development community to contribute,” said AuriStor Founder and CEO Jeffrey Altman.

Devgistics

“We seized the opportunity to join this foundation because OpenSSF offers a real industry-neutral forum to accelerate the hardening and security of the software supply chain. Devgistics (formerly InfoSiftr) provides critical enhancements to the world’s most popular open-source repository. Devgistics has been involved in many free and open-source initiatives for years, including being a Moby (Docker Engine) maintainer, providing support to the Docker/container ecosystem, and serving in the Open Container Initiative. Devgistics continues to contribute cutting-edge solutions for security-conscious clients like the US Air Force,” said Devgistics Founder and President Justin Steele. 

DTCC

“DTCC is committed to developing highly resilient and secure code to safeguard the financial marketplace. DTCC is proud to be part of the OpenSSF community and looks forward to partnering with our fellow members on safe, secure and reliable computing,” said Ajoy Kumar, Head of Tech/Cyber Risk at DTCC.

GitLab

“As organizations modernize software development and shift security left, GitLab believes that open source will play a key role in fostering this modernization and delivering secure software with speed to the market,” said Eric Johnson, CTO at GitLab. “Supporting the Open Source Security Foundation aligns with GitLab’s mission of enabling everyone to contribute, and we look forward to supporting, collaborating, and sharing our expertise in implementing security in GitLab’s DevOps Platform to the OpenSSF community.”

Goldman Sachs

“Continuing to secure the software supply chain, in particular the many critical open source projects foundational to any modern organization’s IT architecture, is a top strategic imperative for Goldman Sachs, our peers, partners, and clients in financial services, the technology ecosystem, and the wider economy,” said Atte Lahtiranta, chief technology officer at Goldman Sachs. “This work cannot be done in individual organizational silos. We instead need to work collaboratively, across both the private and public sector, together with open source maintainers and contributors, to answer the call to action that is the recent cybersecurity executive order. The OpenSSF will provide an essential forum and associated infrastructure to allow us to share leading practices, develop improved tooling, and work together to better protect our digital infrastructure.”

JFrog

“Open-source software is the backbone of hundreds of thousands of today’s applications, making it critical that we do our best to flag new vulnerabilities and insecure components fast—before they compromise businesses or critical infrastructure,” said Asaf Karas, JFrog Security CTO. “We’re happy to expand our membership with the Linux Foundation and support this cross-industry collaboration to identify and fix open source security vulnerabilities, strengthen tools, and promote best practices to ensure developers can easily shift left and bake-in security from the start of application planning and design — all the way to software deployment, distribution, and runtime.”

Nutanix

“The world runs on open source software and Nutanix is eager to help ensure its security. This can only be achieved through broad industry collaboration. We believe in the founding vision of the Open Source Security Foundation. We hope to help empower open source developers and better protect all of our customers with the partnership it enables. As members of the Open Source Software Foundation, we join other industry leaders in strengthening the software supply chain security we all rely upon,” said Rajiv Mirani, Chief Technology Officer at Nutanix.

StackHawk

“Software development is moving faster than ever before. The industry needs tooling and processes to ensure that security can keep up with today’s pace of development. StackHawk is excited about the work that the Open Source Security Foundation is doing to improve security and we are proud to continue as a member,” said Joni Klippert, StackHawk Founder & CEO.

Tencent

“IT development to date, an increasing number of critical businesses and core competencies have been built on open source, and this trend will continue. As an important part of the software supply chain, open source security plays an important role in the entire software supply chain. Tencent Cloud has always been keen to contribute code and technology to open source projects, and also maintains a continuous huge investment in security. It is very gratifying to see that OpenSSF can be established, and we look forward to working closely with industry  partners to improve the security level of open source software and strengthen the software supply chain security,” said KK Dong, Chief Security Officer at Tencent Cloud.

Wind River

“As the dependency on open-source software becomes increasingly pervasive, the Open Source Security Foundation’s community-driven approach to developing and sharing security metrics, tools and best practices becomes an imperative. Our customers are actively interested in the health of the open source from which their solutions are constructed, and assuring secure development across open the supply chain is vital,” said Paul Miller, CTO, Wind River. “We are looking forward to collaborating more closely with the OpenSSF community. By working together, Wind River can provide customers with a level of open source security assurance that would otherwise be unobtainable.”

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1,800 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure, including Linux, Kubernetes, Node.js, Hyperledger, RISC-V, and more.  The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users, and solution providers to create sustainable models for open collaboration. For more information, please visit us at https://www.linuxfoundation.org/

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contacts

Jennifer Cloer

503-867-2304

jennifer@storychangesculture.com

  • News announced via LFN governing board member, Koby Atival, during ONE Summit keynote
  • Fully open-sourced, L3AF enables Kernel Function as a Service by providing complete lifecycle management of eBPF networking application programs
  • The project brings a strong existing ecosystem, with support from Microsoft, Wipro, Tech Mahindra, and more

SAN FRANCISCO, October 11, 2021LF Networking (LFN), which facilitates collaboration and operational excellence across open source networking projects, today announced that Walmart has moved its L3AF project to the Linux Foundation. L3AF provides complete life-cycle management of eBPF networking application programs with the help of an advanced control plane, offering a cloud and vendor-agnostic platform for launching and managing eBPF programs.

Koby Avital, executive vice president, Walmart Global Tech, announced the news during his keynote address, “Open Innovation Driving Retail Transformation” as part of Open Networking and Edge (ONE) Summit + Kubernetes on Edge Day, this morning.

“I’m excited to open source L3AF, a platform that has allowed us to operate various security and network functions in this omni environment,” said Koby Avital, Executive Vice President, Walmart Global Tech. “With L3AF life cycle management, we’ve been able to tap into the power of eBPF while accelerating and streamlining its usage. This has allowed us to replace third party and Cloud provider-specific solutions with a common platform that’s not only much easier to manage but also more cost effective. By sharing this capability with the community, we hope to help accelerate the development of solutions for managing an omni environment for other enterprises or service providers and bring about standards and practices that benefit everyone.”

“L3AF as a network application for large-scale enterprise complements the eBPF Foundation and other accelerated forwarding and data plane projects under LF networking quite well,” said Arpit Joshipura, general manager, Networking, Edge and IoT, the Linux Foundation. “We’re looking forward to building an open source networking community within this critical application space.”

L3AF is an open source project, developed by Walmart, housing cutting-edge solutions in the realm of eBPF (a revolutionary technology that allows us to run sandboxed programs in an operating system kernel) that provides complete life-cycle management of eBPF programs with the help of an advanced control plane that has been written in Golang. The  control plane orchestrates and composes independent eBPF programs across the network infrastructure to solve crucial business problems. L3AF’s eBPF programs include load-balancing, rate limiting, traffic mirroring, flow exporter, packet manipulation, performance tuning, and many more. 

For more information on the L3AF project, read this 3-part introductory blog series or visit the website at​​ l3af.io

Quotes from Supporting Organizations

Microsoft 

“Lifecycle management of eBPF programs is an exciting area of innovation that will enable new scenarios and use cases,” said Krishna Ganugapati, VP of Software Engineering, Microsoft.  “We look forward to collaborating with Walmart and the L3AF project.”

Tech Mahindra

As a founding member of the L3AF project, we are pleased to see the community join Linux Foundation Networking as a neutral venue for open collaboration,” Manish Mangal, Global Business Head – Network Services, Tech Mahindra. “The collective work being done in L3AF to provide eBPF- based networking and observability solutions in an open format is aligned with Tech Mahindra’s mission to unlock the value of 5G and Networks by helping Enterprises and CSPs transform to Cloud Native Software Centric Digital Operators. We are eager to see the work progress even further.” 

Wipro

“Walmart is making a significant technology contribution in open sourcing the L3AF platform, enabling production-tested secure kernel-level networking functionality required by the edge computing ecosystem. Open sourcing L3AF under the Linux Foundation umbrella will provide the support necessary for increased pace of innovation and industry adoption,” said Andrew Aitken, General Manager, Open Source Leader, Office of CTO, Wipro Limited. 

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

Experts and industry leaders will gather for thought-provoking insights and conversations about how to best leverage open source in fintech and finserv to solve industry challenges.

SAN FRANCISCO, October 7, 2021The Linux Foundation, the nonprofit organization enabling mass innovation through open source, along with co-host Fintech Open Source Foundation (FINOS), a nonprofit whose mission is to accelerate adoption of open source software, standards and best practices in financial services, today announced keynote speakers for Open Source Strategy Forum New York (OSSF). The event takes place November 10, preceded by a FINOS Member event on November 9, in New York City. The schedule can be viewed here and the keynote speakers can be viewed here

OSSF features an agenda covering recent developments and the direction of open source in financial services across a wide range of topics and domains. The event promotes deeper collaboration across finance, open source and technology and drives innovation across the industry in order to deliver better code, faster.

Keynote speakers this year include:

  • Antoine Amend, Technical Director – Financial Services, Databricks
  • Jo Ann Barefoot, CEO & Co-Founder, Alliance for Innovative Regulations
  • Nadine Chakar, Head of Global Markets, State Street   
  • Gabriele Columbro, Executive Director, FINOS
  • Jean-Thierry (JT) Dupuy, Vice President, Head of Client Services, Symphony 
  • Brad Levy, CEO, Symphony
  • John Madsen, Co-Head of Technology, Goldman Sachs
  • Sultan Meghji, Chief Innovation Officer, FDIC
  • Igor Seletskiy, CEO & Founder, TuxCare

Conference Session Highlights:

Registration is available for US$449 through October 13. Members of The Linux Foundation receive a 20 percent discount – members can contact events@linuxfoundation.org to request a member discount code. Members of FINOS can attend at no cost – members can contact ossf@finos.org to request the FINOS Member registration code. 

Health and Safety
Attendees will be required to be fully vaccinated against the COVID-19 virus and wear a mask while onsite at the event. Additionally, all attendees will need to comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. To learn more, visit the Health & Safety webpage and read our blog post.

Sponsor
For information on becoming an event sponsor, click here or email us for more information and to speak to our team. The sponsorship deadline is October 26.

Press
Members of the press who would like to request a press pass to attend should contact Kristin O’Connell.

About the Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure, including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

The Linux Foundation Events are where the world’s leading technologists meet, collaborate, learn and network in order to advance innovations that support the world’s largest shared technologies.

Visit our website and follow us on Twitter, Linkedin, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact
Kristin O’Connell
The Linux Foundation
koconnell@linuxfoundation.org

Rooted in academia, the PaSh project prepares for industrial adoption

SAN FRANCISCO, Calif., September 21, 2021 — The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it will host the PaSh project. PaSh is a system for automatically parallelizing POSIX shell scripts that optimizes programs and speeds up execution times, leading to faster results for data scientists, engineers, biologists, economists, administrators, and programmers.

The project is supported by MIT, Rice University, Stevens Institute of Technology, and the University of Pennsylvania and governed by a Technical Steering Committee that includes Nikos Vasilakis, research scientist at MIT; Michael Greenberg, assistant professor at Stevens Institute of Technology; and Konstantinos Kallas, Ph.D. student at University of Pennsylvania.

“The Linux Foundation offers the technical governance infrastructure and services that PaSh has come to require as it has become more mature,” said Nikos Vasilakis, Technical Steering Committee chair for the PaSh Project. “We created the project to improve upon and accelerate the execution of shell scripts in the face of new web crawling, indexing and natural language processing changes.”

Konstantinos Kallas, Technical Steering Committee member for the PaSh project, adds “PaSh has received significant attention from the academic community and has the potential for an outsized impact in industry today, due to several synergistic trends. This is the right move at the right time.”

The techniques underpinning the project have gathered several awards, including a best paper award at the 16th edition of the EuroSys conference and a graduate research award for Konstantinos by the Association of Computing Machinery.

From succinct data wrangling and everyday processing to system orchestration and administration, shell scripting—the ever-present glue holding commands developed in different languages  together—forms the backbone of today’s computing userspace. PaSh parallelizes shell scripts, achieving significant performance improvements. On modern multiprocessor computers, PaSh can execute tasks like web crawling and indexing, COVID19-related analyses, natural-language processing, and other workloads in a fraction of their original time with minimal-to-zero developer effort.

“Shell scripts have been used pervasively for half a century, and recent trends towards ‘containerization’ have only increased their importance,” said Michael Greenberg, Technical Steering Committee member for the PaSh Project. “The correct and automated parallelization of shell scripts has been an issue for several decades. PaSh promises a speed boost to shell users of all stripes.”

To accelerate shell scripts, PaSh provides a source-to-source parallelizing compiler, a program that takes as input a programmer’s shell script and returns a new program that is significantly faster than the original program. Since PaSh is source-to-source, it allows the optimized shell script to be inspected and executed using the same tools, in the same environment, and with the same data as the original script. A small runtime library and associated annotations on programs commonly used in shell scripts complete the picture, providing the PaSh compiler with high-performance primitives and supporting its key functions.

“The PaSh Project represents innovation in computer science and open source software,” said Mike Dolan, general manager and senior vice president of Projects at the Linux Foundation. “As software development evolves to address machine learning, containerization, artificial intelligence and more, PaSh shows up to support developers and data scientists who need more out of their scripting tools. We’re happy to be able to host this important work at Linux Foundation, a natural home for a project like this.”

To learn more and to get involved in the PaSh project, please visit http://binpa.sh/

About the Linux Foundation

Founded in 2000, the Linux Foundation is supported by more than 1,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit us at linuxfoundation.org

###

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our trademark usage page: https://www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds.

Media Contact

Jennifer Cloer
Story Changes Culture
503-867-2304
jennifer@storychangesculture.com

This by-invitation event for Linux Foundation member organizations fosters collaboration, innovation, and partnerships among the leading projects and organizations working to drive digital transformation with open technologies.


SAN FRANCISCO, September 21, 2021The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced the agenda and speaker lineup for the 2021 Linux Foundation Member Summit (LFMS), taking place November 2-4 at the Silverado Resort in Napa Valley, California. The keynote speakers can be viewed here and the full schedule can be viewed here.

LFMS, (formerly Open Source Leadership Summit), is a by-invitation event for Linux Foundation member organizations, where technical and business leaders convene to drive digital transformation and learn how to collaboratively manage the largest shared technology investment of our time. LFMS is a must-attend event for those looking to advance open source strategy, implementation and investment.

“Open source technology continues to show its strength and value to businesses across many different verticals and sectors, as well as its impact on the bottom line”, says Jim Zemlin, Executive Director, The Linux Foundation. “Our Member Summit is an opportunity for the best and brightest technical, business and community leaders to come together and share their valuable insights and experiences and to collaborate on important open source technology innovation.”

Keynote Speakers Include:

  • Josh Aas, Executive Director, Internet Security Research Group discussing Prossimo
  • Brian Christian, Author, “The Alignment Problem: Machine Learning and Human Values” & “The Most Human Human“; Co-author of “Algorithms to Live By” sharing on the intersection of AI and humanity   
  • Gabriele Columbro, Executive Director, Fintech Open Source Foundation providing project updates
  • Colin Eberhardt, Technology Director, Scott Logic discussing WebAssembly
  • Ali Fenn, President, ITRenew talking about circular data centers
  • Jennifer Fernick, SVP & Global Head of Research, NCC Group and Dr. David A. Wheeler, Director of Open Source Supply Chain Security, The Linux Foundation discussing OpenSSF
  • Luke Hinds, Security Engineering Lead, CTO Office, Red Hat sharing on sigstore
  • Sumer Johal, Executive Director, AgStack Foundation providing project updates
  • Kim Lewandowski, Product, Stealth Startup discussing the SLSA framework
  • Dan Lorenc, Software Engineer, Google sharing on the state of OSS Supply Chain Security
  • Gary O’Neall, CEO, Source Auditor Inc. and Kate Stewart, VP, Dependable Embedded Systems, The Linux Foundation discussing SPDX
  • Calista Redmond, CEO, RISC-V International talking about open hardware
  • Liz Rice, Chief Open Source Officer, Isovalent discussing cloud native security
  • Jon Stine, Executive Director, The Open Voice Network providing project updates
  • Jenny Wanger, Director of Programs, LF Public Health providing project updates
  • Jim Zemlin, Executive Director, The Linux Foundation providing foundation updates

Session Highlights:

  • The Coming Culture Challenges for Open Source Projects – Stephen Walli, Microsoft
  • The Importance of DEIA (Diversity, Equity, Inclusion, Accessibility) in Open Source – Anni Lai, Futurewei; Priyanka Sharma, CNCF; Tina Tsou, Arm; and Arun Gupta, Apple
  • Pandemic Pivots of an OSPO – Nithya Ruff, Comcast
  • The Prometheus Story: How a Side Project Became the Global Market Leader – Richard Hartmann, Grafana Labs
  • Trademarks and Open Source – Daniel Scales, The Linux Foundation
  • We Are Many, but We Are One – Tracy Miranda, Continuous Delivery Foundation; Sharon Jerop Kipruto, Google; Priti Desai, IBM; Christie Wilson, Google; and Kara de la Marck, CloudBees


Attend

Attendance to The Linux Foundation Member Summit is limited to members of The Linux Foundation, as well as to governing board members of LF Projects, media, speakers and sponsors. Invitation codes have been sent to member organization representatives. If you already have an invitation code, please go ahead and register here. If you do not, you may contact us for more information on attendance opportunities.

Sponsor
The Linux Foundation Member Summit is made possible thanks to our sponsors, including Co-Hosts: Google and TARS Foundation, Reception Sponsor: Cloud Native Computing Foundation, Lunch Sponsors: AWS and Oracle, Breakfast and Breaks Sponsors: Dell Technologies, IBM and VMware and Supporter: Indeed.

If you are not an LF member company, but would like to attend The Linux Foundation Member Summit, sponsoring it is an excellent opportunity to gain additional access to the event and its attendees for strategic discussions and collaboration. Learn more here

Press
Members of the press who would like to request a press pass to attend should contact Kristin O’Connell.

Health and Safety
Attendees will be required to be fully vaccinated against the COVID-19 virus and will need to wear a mask while onsite and comply with all on-site health measures, in accordance with The Linux Foundation Code of Conduct. To learn more, visit the Health & Safety webpage and read our blog post.

Travel Funding
The Linux Foundation’s Travel Fund is accepting applications, to enable those to join the event who might otherwise not be able to due to a lack of funding. We place an emphasis on funding applicants who are from historically underrepresented or untapped groups and/or those of lower socioeconomic status. Note that you must have an invitation to the event in order to apply for travel funding. To learn more and apply, click here.

About the Linux Foundation
Founded in 2000, the Linux Foundation is supported by more than 2,000 members and is the world’s leading home for collaboration on open source software, open standards, open data, and open hardware. Linux Foundation’s projects are critical to the world’s infrastructure, including Linux, Kubernetes, Node.js, and more. The Linux Foundation’s methodology focuses on leveraging best practices and addressing the needs of contributors, users and solution providers to create sustainable models for open collaboration. For more information, please visit linuxfoundation.org.

The Linux Foundation Events are where the world’s leading technologists meet, collaborate, learn and network in order to advance innovations that support the world’s largest shared technologies.

Visit our website and follow us on Twitter, Linkedin, and Facebook for all the latest event updates and announcements.

The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see its trademark usage page: www.linuxfoundation.org/trademark-usage. Linux is a registered trademark of Linus Torvalds. 

###

Media Contact
Kristin O’Connell
The Linux Foundation
koconnell@linuxfoundation.org