Google Launched a Secure Open Source (SOS) Program for Developers

Google starts the Secure Open Source (SOS) Rewards pilot program run by the Linux Foundation with initial sponsorship of $1 million.

Google has announced that it’s sponsoring a new open source security program hosted by the Linux Foundation. The Secure Open Source (SOS) Rewards pilot program provides financial incentives for developers working on security around critical open source projects.

Certainly, open source software plays an integral part of many critical infrastructure and national security systems, with recent data suggests that attacks on open source software have increased in the last year. 

Google has planned to start with $1 million investment to financially reward developers for enhancing the security of critical open source projects. This comes after Google’s previous $10 billion commitment to open source security.

We are starting with a $1 million investment and plan to expand the scope of the program based on community feedback.

Google Open Source Security Team (GOSST)

The decision to compensate developers for their efforts will be based on the guidelines established by the National Institute of Standards and Technology (NIST) arm of the U.S. Department of Commerce in response to the recent executive order on cybersecurity issued by the Biden administration.

Secure Open Source Program Rewarding

Rewards will be determined on the complexity and impact of work ranging from $10,000 or more for complicated, high-impact and lasting improvements that almost certainly prevent major vulnerabilities to $505 for small improvements that have merit from a security standpoint.

For moderately complicated innovations that deliver compelling security benefits, awards of $5,000 to $10,000 are offered, while incentives of $1,000 to $5,000 are available for solutions of modest complexity and impact.

Upfront funding is available on a limited basis for impactful improvements of moderate to high complexity over a longer time span. Those requests should be provided with a detailed plan of how the improvements will be delivered.

Developers who wish to participate in the SOS program should visit the FAQ page and fill out the Secure Open Source submission form.

Bobby Borisov

Bobby Borisov

Bobby, an editor-in-chief at Linuxiac, is a Linux professional with over 20 years of experience. With a strong focus on Linux and open-source software, he has worked as a Senior Linux System Administrator, Software Developer, and DevOps Engineer for small and large multinational companies.

Think You're an Ubuntu Expert? Let's Find Out!

Put your knowledge to the test in our lightning-fast Ubuntu quiz!
Ten questions to challenge yourself to see if you're a Linux legend or just a penguin in the making.

1 / 10

Ubuntu is an ancient African word that means:

2 / 10

Who is the Ubuntu's founder?

3 / 10

What year was the first official Ubuntu release?

4 / 10

What does the Ubuntu logo symbolize?

5 / 10

What package format does Ubuntu use for installing software?

6 / 10

When are Ubuntu's LTS versions released?

7 / 10

What is Unity?

8 / 10

What are Ubuntu versions named after?

9 / 10

What's Ubuntu Core?

10 / 10

Which Ubuntu version is Snap introduced?

The average score is 69%