🚨 Attention Open Source Maintainers! 🚨
The Open Source Security (OpenSSF) and OpenJS Foundations have issued a critical alert due to a recent attempted takeover of the XZ Utils project.
https://openssf.org/uncategorized/2024/04/15/open-source-security-openssf-and-openjs-foundations-issue-alert-for-social-engineering-takeovers-of-open-source-projects/
#OpenSourceSecurity
OpenSSF /
npub1w8…wukje
2024-04-15 14:49:14
Author Public Key
npub1w8zuj6sdg9gxtf9sj836vwfr8n0s6qt5hhe3ymwfgj8pera4zsdsrwukjePublished at
2024-04-15 14:49:14Event JSON
{
"id": "f3c5f3478226c071b897b3d4ae8bfddf5240aeed8187904991ed48394c85fe5e",
"pubkey": "71c5c96a0d415065a4b091e3a639233cdf0d0174bdf3126dc9448e1c8fb5141b",
"created_at": 1713192554,
"kind": 1,
"tags": [
[
"t",
"opensourcesecurity"
],
[
"proxy",
"https://social.lfx.dev/users/openssf/statuses/112275787275508215",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://social.lfx.dev/users/openssf/statuses/112275787275508215",
"pink.momostr"
]
],
"content": "🚨 Attention Open Source Maintainers! 🚨\n\nThe Open Source Security (OpenSSF) and OpenJS Foundations have issued a critical alert due to a recent attempted takeover of the XZ Utils project.\n\nhttps://openssf.org/uncategorized/2024/04/15/open-source-security-openssf-and-openjs-foundations-issue-alert-for-social-engineering-takeovers-of-open-source-projects/\n\n#OpenSourceSecurity",
"sig": "08e472cf757504147c0b2286a02e5c039bb1b3b52e649ec8282c9cfea1f31e8767e380298277c5000a03d537d23f2019a214fd4e6041b22af6f7c3ac14a9fbab"
}