Rephonic
Artwork for What's in the SOSS? An OpenSSF Podcast

What's in the SOSS? An OpenSSF Podcast

OpenSSF
Open Source Software
Openssf
Open Source Security Foundation
Open Source Security
Cybersecurity
Open Source
Vulnerability Management
Supply Chain Security
Software Development
AI Cyber Challenge
Artificial Intelligence
Red Hat
Software Supply Chain Security
Software Security
Secure Software Development
Vulnerabilities
Vulnerability Disclosure Programs
Google
Security
Software Bill Of Materials

What's in the SOSS? features the sharpest minds in security as they dig into the challenges and opportunities that create a recipe for success in making software more secure. Get a taste of all the ingredients that make up secure open source software (SOSS) and explore the latest trends at the intersection of AI and security, vulnerability management, and threat assessments. Each episode of What's... more

7 ratings
PublishesWeeklyEpisodes63Founded2 years ago
Number of ListenersCategory
Technology

Listen to this Podcast

Listen on Apple PodcastsListen on SpotifyListen on CastboxListen on Podcast AddictListen on Pocket CastsListen on OvercastListen on YouTube MusicListen on RSS
Artwork for What's in the SOSS? An OpenSSF Podcast
 Guests Host Charts Talking Points

Latest Episodes

Consuming with Intent: Driving Enterprise Security and Career Growth Through Open Source with Jamie Thomas (IBM)

In this episode of Big Thoughts, Open Sources, host CRob sits down with Jamie Thomas, IBM Enterprise Security Executive and OpenSSF Governing Board Member (former Chair!), to tackle the vital shifting dynamics of enterprise open source engagement. Fr... more

16 Jun 202629 min

The Ghost in the Dependency Tree: Navigating Open Source End-of-Life with HeroDevs

In this episode of What’s in the SOSS, host CRob sits down with Isaac Wuest, Product Line Leader at HeroDevs, to explore the critical and often overlooked "gray area" of the software supply chain: End-of-Life (EOL) software. While the industry heavil... more

2 Jun 202626 min

Beginner to Builder: Shaping the Conversation in Open Source Security

In this episode of What's in the SOSS, Yesenia Yser interviews cybersecurity analyst Ejiro Oghenekome about her journey from UI/UX design to becoming a key contributor to the OpenSSF. Ejiro shares the inspiration behind her public "100 Days of Cybers... more

19 May 202625 min

Packaging, Transferring, and Deploying Software in Air-Gapped Environments with Zarf

Host Sally Cooper is joined by Brandt Keller, a staff software engineer at Defense Unicorns and maintainer of the OpenSSF sandbox project, Zarf. Brandt discusses Zarf's origins as a tool designed to reliably package, transfer, and deploy software com... more

5 May 202619 min

Key Facts

Accepts Guests
Contact Information
Podcast Host
Number of Listeners
Find out how many people listen to this podcast per episode and each month.

Similar Podcasts

People also subscribe to these shows.

Cloud Security Podcast by Google
Cloud Security Podcast by GoogleAnton Chuvakin
The InfoQ Podcast
The InfoQ PodcastInfoQ
The AI Daily Brief: Artificial Intelligence News and Analysis
The AI Daily Brief: Artificial Intelligence News and AnalysisNathaniel Whittemore
The Daily
The DailyThe New York Times

Recent Guests

Ejiro Oghenekome
Cybersecurity analyst
OpenSSF
Episode: Beginner to Builder: Shaping the Conversation in Open Source Security
Brandt Keller
Staff software engineer at Defense Unicorns; maintainer for Zarf
Defense Unicorns
Episode: Packaging, Transferring, and Deploying Software in Air-Gapped Environments with Zarf
Prince Asiedu
Founder of OSSAfrica
OpenSSF Special Enquiries Group / OSSAfrica
Episode: Building a Connected Africa: The Origin Story of OSSAfrica with Prince Asiedu
Mike Lieberman
Founder/CEO of Kusari, security expert focused on open source security
Kusari
Episode: From Noise to Signal: Security Expertise and Kusari Inspector with Mike Lieberman
Jenn Power
Principal Product Security Engineer at Red Hat
Red Hat
Episode: The Gemara Project: GRC Engineering Model for Automated Risk Assessment
Hannah Braswell
Associate Product Security Engineer at Red Hat
Red Hat
Episode: The Gemara Project: GRC Engineering Model for Automated Risk Assessment
Justin Cappos
Professor at New York University, focused on software supply chain security
New York University
Episode: Teaching the Next Generation: Software Supply Chain Security in Academia with Justin Cappos
Eddie Knight
Specialist in security compliance and community member at Sonatype and the Linux Foundation
Sonatype
Episode: A Deep Dive into the Open Source Project Security (OSPS) Baseline
Ben Cotton
Open source community lead at Kusari and leader of the OSPS Baseline SIG
Kusari
Episode: A Deep Dive into the Open Source Project Security (OSPS) Baseline

Host

Christopher Robinson
Host with deep involvement in OpenSSF efforts and security community leadership; multiple appearances across episodes.

Chart Rankings

How this podcast ranks in the Apple Podcasts, Spotify and YouTube charts.

Apple Podcasts
#199
Canada/Technology

Talking Points

Recent interactions between the hosts and their guests.

Big Thoughts, Open Sources Inaugural Episode: Beyond the Hype: Brian Fox on Securing the Agentic Future of Open Source
Q: What are the main risks you see with AI-driven tooling in software supply chains, and how can organizations mitigate them?
The guest highlights issues like models making up versions, dependency confusion, slop squatting, and the importance of upfront data, root prompting, and integrated governance to prevent downstream security and reliability problems.
Big Thoughts, Open Sources Inaugural Episode: Beyond the Hype: Brian Fox on Securing the Agentic Future of Open Source
Q: What are your thoughts on AI in the context of open source software security and supply chain governance?
He discusses the rapid evolution of AI-assisted development, the need to embed policy and governance up front, and the potential of standardized interfaces like MCP to deliver up-to-date guidance across tools while avoiding governance gaps and insecure deployments.
Big Thoughts, Open Sources Inaugural Episode: Beyond the Hype: Brian Fox on Securing the Agentic Future of Open Source
Q: Could you maybe talk a little bit about how you got into open source and what you specialize in in this ecosystem?
Brian explains starting with Apache Maven in the early 2000s, moving into Maven Central, co-founding Sonatype, and taking on leadership roles in OpenSSF and other open source security initiatives, with a focus on real-time analysis and better governance for developers.
Building a Connected Africa: The Origin Story of OSSAfrica with Prince Asiedu
Q: Are you an early bird or a night owl?
He prefers sleeping early.
Building a Connected Africa: The Origin Story of OSSAfrica with Prince Asiedu
Q: Comfort food?
Wachi, a rice-and-beans dish with herbs and African leaves.

Audience Metrics

Listeners, social reach, demographics and more for this podcast.

Listeners per Episode
Gender Skew
Location
Interests
Professions
Age Range
Household Income
Social Media Reach

Frequently Asked Questions About What's in the SOSS? An OpenSSF Podcast

What is What's in the SOSS? An OpenSSF Podcast about and what kind of topics does it cover?

The show centers on the practical and governance-oriented aspects of securing open source software, with a steady emphasis on tooling, collaboration, and education. Across recent episodes, discussions span open source security tooling like Inspector and the OSPS Baseline, mentorship and onboarding structures within OpenSSF, automated risk assessment models (Gemara), and AI-enabled approaches to security challenges. The format combines practitioner insights from security engineers, researchers, and industry leaders with real-world case studies in governance, compliance, and secure software development, making the podcast a strong resource for maintainers, developers, and security teams seeking pragmatic strategies and community-driven soluti... more

Where can I find podcast stats for What's in the SOSS? An OpenSSF Podcast?

Rephonic provides a wide range of podcast stats for What's in the SOSS? An OpenSSF Podcast. We scanned the web and collated all of the information that we could find in our comprehensive podcast database. See how many people listen to What's in the SOSS? An OpenSSF Podcast and access YouTube viewership numbers, download stats, audience demographics, chart rankings, ratings, reviews and more.

How many listeners does What's in the SOSS? An OpenSSF Podcast get?

Rephonic provides a full set of podcast information for three million podcasts, including the number of listeners. View further listenership figures for What's in the SOSS? An OpenSSF Podcast, including podcast download numbers and subscriber numbers, so you can make better decisions about which podcasts to sponsor or be a guest on. You will need to upgrade your account to access this premium data.

What are the audience demographics for What's in the SOSS? An OpenSSF Podcast?

Rephonic provides comprehensive predictive audience data for What's in the SOSS? An OpenSSF Podcast, including gender skew, age, country, political leaning, income, professions, education level, and interests. You can access these listener demographics by upgrading your account.

How many subscribers and views does What's in the SOSS? An OpenSSF Podcast have?

To see how many followers or subscribers What's in the SOSS? An OpenSSF Podcast has on Spotify and other platforms such as Castbox and Podcast Addict, simply upgrade your account. You'll also find viewership figures for their YouTube channel if they have one.

Which podcasts are similar to What's in the SOSS? An OpenSSF Podcast?

These podcasts share a similar audience with What's in the SOSS? An OpenSSF Podcast:

1. Cloud Security Podcast by Google
2. The InfoQ Podcast
3. The AI Daily Brief: Artificial Intelligence News and Analysis
4. The Daily

How many episodes of What's in the SOSS? An OpenSSF Podcast are there?

What's in the SOSS? An OpenSSF Podcast launched 2 years ago and published 63 episodes to date. You can find more information about this podcast including rankings, audience demographics and engagement in our podcast database.

How do I contact What's in the SOSS? An OpenSSF Podcast?

Our systems regularly scour the web to find email addresses and social media links for this podcast. We scanned the web and collated all of the contact information that we could find in our podcast database. But in the unlikely event that you can't find what you're looking for, our concierge service lets you request our research team to source better contacts for you.

Where can I see ratings and reviews for What's in the SOSS? An OpenSSF Podcast?

Rephonic pulls ratings and reviews for What's in the SOSS? An OpenSSF Podcast from multiple sources, including Spotify, Apple Podcasts, Castbox, and Podcast Addict.

View all the reviews in one place instead of visiting each platform individually and use this information to decide if a show is worth pitching or not.

How do I access podcast episode transcripts for What's in the SOSS? An OpenSSF Podcast?

Rephonic provides full transcripts for episodes of What's in the SOSS? An OpenSSF Podcast. Search within each transcript for your keywords, whether they be topics, brands or people, and figure out if it's worth pitching as a guest or sponsor. You can even set-up alerts to get notified when your keywords are mentioned.

What guests have appeared on What's in the SOSS? An OpenSSF Podcast?

Recent guests on What's in the SOSS? An OpenSSF Podcast include:

1. Ejiro Oghenekome
2. Brandt Keller
3. Prince Asiedu
4. Mike Lieberman
5. Jenn Power
6. Hannah Braswell
7. Justin Cappos
8. Eddie Knight

To view more recent guests and their details, simply upgrade your Rephonic account. You'll also get access to a typical guest profile to help you decide if the show is worth pitching.

Find and pitch the right podcasts

We help savvy brands, marketers and PR professionals to find the right podcasts for any topic or niche. Get the data and contacts you need to pitch podcasts at scale and turn listeners into customers.
Try it free for 7 days