Open SourceOpen Source Security Program
We volunteer security research to open source projects we believe in. If you maintain a FOSS project and need help finding and fixing security issues, we might be able to help.
How It Works
A straightforward process from application to engagement
Apply
Submit your project details through the form below. Tell us about your project, its users, and what security help you need.
Evaluate
We review your project to assess scope, impact, and alignment with our program. This is a quick evaluation, not a lengthy process.
Engage
We hop on a quick call to align on scope and expectations, then get to work. No bureaucracy, no contracts. just security work.
What We Offer
Pro-bono security services for qualifying open source projects
Security Audits
Full security assessment of your codebase. vulnerability discovery, code review, and a detailed report with findings and remediation guidance. Same quality as our paid engagements.
VDP Management
We help set up and manage your Vulnerability Disclosure Program. Triage assistance, researcher coordination, and ongoing support to handle incoming security reports properly.
Apply for the Program
Tell us about your project and how we can help
Or reach out directly at: