🛡️ #gittuf brings supply chain security to the source itself - applying portable, policy-based attestations directly to Git repositories. From two-party reviews to test enforcement, gittuf makes GitOps & repo-driven workflows more trustworthy by default.

🎥 Watch the Project Spotlight: https://youtu.be/bQ-GHyHJcbc?si=SeuGgB9HtemmMzIO

🚀 #gittuf is now an Incubating Project under OpenSSF!

🔐 A platform-agnostic Git security framework, gittuf brings cryptographic access controls and policy enforcement—without disrupting Git workflows.

📖 Read the blog: https://openssf.org/blog/2025/06/06/from-sandbox-to-incubating-gittufs-next-step-in-open-source-security/

🌐 gittuf.dev

🚀 Looking to break into #Cybersecurity or gain hands-on experience in #OpenSourceSecurity? The OpenSSF BEAR WG is teaming up with LFX Mentorship for the Summer 2025 program — and applications are now open!

Projects include #RSTUF and #gittuf, with a stipend for mentees!
🗓️ Deadline: May 18, 2025
📖 Read the blog for details + tips to apply: https://openssf.org/blog/2025/05/08/announcing-the-summer-2025-openssf-mentorship-program/
📝 Apply now: https://mentorship.lfx.linuxfoundation.org/project/682e1c59-cd50-4602-ac91-2da8a9be01ea