Open-source runs the world. That’s why we at the Linux Foundation and UXL genuinely believe in establishing and transparently sharing the best ecosystem practices, staying at the forefront of modern collaborative software development. Recognizing the level of responsibility entrusted to us by millions of users who consume LF and UXL projects, we must make sure our repos are as resilient as possible to the next industry incident like XZ poisoning, regreSSHion attack, or a vulnerability in Log4j. Let’s talk about how the UXL Security strategy and application of the best-in-class industry practices and tools help us make the common good of open-source a safer and trusted space.