Wir sehen uns auf der #FrOSCon! Sa, 16.8., 14:30 Uhr – Inside the #SovereignTechFellowship mit Sarah Hoffmann (@openstreetmap.bsky.social‬, Nominatim), Stefan Eissing (curl, httpd) & Mirko Swillus (Sovereign Tech Agency). Sie sprechen zusammen über Arbeit & Alltag als Open-Source-Maintainer*in 1/3

Today at 17:30 for the Bits & Bäume Policy Lab, @kattascha.bsky.social, @ceciliarikap.bsky.social, @alexandrageese.bsky.social & Sovereign Tech Agency CEO Adriana Groh are discussing how to build resilient digital infrastructure — as the economy, society, and technology are inextricably linked. 1/2

What can Open Source do for Europe? Open source is the basis for Europe’s critical digital infrastructure, from public services to cybersecurity. To keep it reliable and secure, we need sustainable support and long-term investments.

Last autumn in Berlin, we celebrated the launch of our research report, Bug Bounties and FOSS, under the Sovereign Tech Resilience program. Now, we’re excited to share the keynote and panel videos, the German report, and a new job opening for the program!

Do you love FOSS and want to work to support public digital infrastructure? Come work with us! We're looking to strengthen the team through a couple of really interesting positions! Check them out below, and share this with your networks. #FOSSJobs #Hiring

Reminder 🔔 We’re hosting a devroom at @FOSDEM 2025! The "Funding the FOSS Ecosystem" devroom is for developers to gain insights into funding strategies, encourages funders to better understand and support developer needs in FOSS projects.

Today, the Sovereign Tech Fund turns two years old. Since our first anniversary, so much has happened: new programs, more investments, and even more ways to strengthen the digital infrastructure and software that we all rely on. We would like to thank SPRIND, @bmwk.de ... 1/3

Hope to see you there!

How effective are bug bounties in making open source critical infrastructure safer? Join us on the evening of 30 Sep 2024 in Berlin for the presentation of Dr. Ryan Ellis’ research, a keynote by Sabine Grützmacher (MdB), and an expert panel, exploring FOSS, security, and the public interest. 1/3

With five new software projects on the YesWeHack platform, for a total of seven, there’s a lot of code to look at. Find and report potential vulnerabilities responsibly, in exchange for a bug bounty. 2/2

We’re calling on security researchers to help enhance the resilience of open digital infrastructure. Participate in the bug & fix bounties of seven critical software projects. 1/2 www.sovereigntechfund.de/news/calling...

STF technologist @tarakiyee.bsky.social will be speaking about memory safety and our Bug Resilience Program's approach to vulnerability management in open digital infrastructure this week with the Charter Of Trust in Braunschweig, Germany, hosted by Siemens Mobility: www.linkedin.com/events/3rdch...

Who gives a damn about a Github reputation? We should: Reputation Farming and how it can harm OSS tarakiyee.com/faking-git-t...

If you haven't been aware of the recent discussion about the Open Source AI definition, in this post I try to to share some initial links and give my take. Warning: there's an angry rant about "AI" in general at the beginning, feel free to skip. tarakiyee.com/what-on-eart...

Do you maintain a critical Open Source component and wondering how a Bug Bounty Program might add value to your project and what the effort level might be? Feel free to reach out and I'll happily answer any questions you might have about our OSS friendly approach to bug bounties! bugresilience.de

Beim @sovereigntechfund.de kommunizieren wir mit verschiedenen Stakeholdern über die Wichtigkeit offener digitaler Infrastrukturen. Wenn das nach einem interessanten Job für dich klingt, dann mach mit in unserem Kommunikationsteam! www.sovereigntechfund.de/de/stellenan...

Was Munich city's Linux phase really that bad? The Open Source Observatory released a case study that tells the whole story, and I wrote a blogpost about how it applies to Open Source in Public Administration efforts today: tarakiyee.com/lets-talk-ab...

Do you want a bug bounty program for your critical open source library but it's too expensive or you don't have the time to deal with reports? You can sign up for our Bug Reslience Program for help with both! Check out the Bug Resilience Program, we're open now for applications!

Come work with us at @sovereigntechfund.de for a unique job opportunity. As the BRP Manager, you'll spearhead our efforts to enhance bug resilience in FOSS projects to make a meaningful impact in open source critical infrastructure. Apply now at www.sovereigntechfund.de/jobs/bug-res...

Let's make this crystal clear: If you think you are anonymous because you - used a throwaway number for Signal - picked a completely random username for Wire/Matrix - were given a random username with Threema/Session YOU ARE NOT! You can be identified by the push tokens.

Extremely stoked to share today's STF announcement about investing in the memory safe network time protocol implementation project Pendulum. They do such important work and we're very happy to support it. The team has been working hard and we have more exciting investments coming up, stay tuned!

I believe as a society we need to go back to actually setting things in stone.

Weird affirmation from my morning #IETF117 session, "It's gonna be ok, people are smart."