THE LINUX FOUNDATION PROJECTS

Alpha-Omega’s mission is to protect society by catalyzing sustainable security improvements across open source, from the largest global projects to the smallest but essential components maintained by individuals. Open source underpins the world’s digital infrastructure, yet much of it remains under-resourced and exposed to growing security risks. Alpha-Omega exists to address this challenge by serving as a helping hand and funding catalyst that supports the maintainers, communities, and ecosystems where security investment can have the greatest impact.

Learn More

MEMBER ORGANIZATIONS

Premier Members

General Members

Inquire to Join

Organizations join Alpha-Omega because they want to take an active role in improving the security of open source software models.

ABOUT ALPHA-OMEGA

Alpha-Omega is backed by Amazon, Citi, Google, and Microsoft and reflects their commitment to improve open source security. With an annual budget of over $7M, Alpha-Omega works in partnership with maintainers, security researchers, and the global open source community to enable security work that is practical, scalable and sustainable.

LATEST FROM ALPHA-OMEGA

LATEST NEWS

The Economics of Package Registries and Why It Matters

| Blog | No Comments
At FOSDEM 2026 in Brussels, Alpha-Omega co-founder Michael Winser delivered a direct message: the economics of package registries are misaligned with the security expectations placed upon them. Package registries are…

Strengthening supply-chain security in Open VSX

| Blog | No Comments
This blog was originally published on blogs.eclipse.org written by Christopher Guindon Introduction The Open VSX Registry is core infrastructure in the developer supply chain, delivering extensions developers download, install, and rely on…

Alpha-Omega at FOSDEM 2026: Confronting the Economics and Reality of Open Source Security

| Blog | No Comments
Every year, FOSDEM brings together the people who build, maintain, and depend on open source software. It is a place where hard technical problems meet real-world constraints, and where community…

LEADERSHIP TEAM

OSS Supply Chain Security
Google

Bob Callaway
Principal Security PM Manager
Microsoft

Michael Scovetta
AWS
Principal, Open Source

Henri Yandell
Technical Strategist

Michael Winser
Open Source Program Manager
Amazon Web Services

Miaolai Zhou
Senior Security Program Manager
Microsoft

Yesenia Yser

OSS Supply Chain Security
Google

Bob Callaway

Bob Callaway is the leader of Google’s Open Source Security Team (GOSST), spearheading initiatives to bolster the security of open source software, benefiting both Google and the global community. Under his leadership, the GOSST team develops and contributes to projects that address critical areas such as supply chain integrity, observability, and vulnerability management. GOSST also plays a pivotal role in managing essential internet infrastructure services, including OSVSigstore, and Certificate Transparency logs. Bob’s influence extends to advisory positions in key organizations: he serves as a member of the Technical Advisory Council for the OpenSSF, is a co-founder and technical steering committee member of Sigstore, and represents Google on the Alpha-Omega project leadership team. His extensive experience includes engineering and leadership roles at Red Hat, NetApp, and IBM. Bob holds a PhD in Computer Engineering from NC State University, where he also shares his expertise as an adjunct assistant professor in the ECE department.

Principal Security PM Manager
Microsoft

Michael Scovetta

Michael Scovetta leads a security team at Microsoft, focused on understanding and addressing emerging security threats related to open source software and the ecosystem around it. He and his team do this by building security tools, advising engineering teams, and evangelizing good practices. Within OpenSSF, Michael co-leads the Alpha-Omega project and leads the Identifying Security Threats working group. Michael brings around 25 years of software engineering and security experience and earned a Master of Engineering in Computer Science from Cornell University and  Bachelor of Science from Hofstra University.

AWS
Principal, Open Source

Henri Yandell

Henri specializes in large-scale organization of Open Source. Starting as a committer with Jakarta and Apache Commons projects in 2001, he has served on Apache Software Foundation legal and security committees, and as a board member. From 2007 he has led Open Source at Amazon, tackling licensing, upstreaming, company projects, and now the growing field of open source security.

Technical Strategist

Michael Winser

Open Source Program Manager
Amazon Web Services

Miaolai Zhou

Mila Zhou is an open source program manager at AWS, leading funding initiatives that provide crucial support to open source projects. Drawing from her multidisciplinary background in Digital Media Technology, Economics, and Taxation, Mila brings a unique blend of technical knowledge and financial acumen to her role. Her expertise in managing large-scale open source funding programs and measuring their impact has proven invaluable in setting metrics and providing successful examples for enterprise leadership.

Senior Security Program Manager
Microsoft

Yesenia Yser

Yesenia specializes in helping high-growth tech organizations secure the future of innovation by designing supply chain security programs that enable speed without sacrificing safety.  Yesenia brings 13 years of software engineering and cybersecurity and experience spanning incident response, security tooling, software supply chain security, open source security, and AI safety—currently, empowering the world with changes for AI Safety & Security and Open Source Security at Microsoft. Within OpenSSF, she is the co-host of the “What’s in the SOSS” podcast, co-lead of the BEAR (Belonging, Empowerment, Allyship, and Representation). Yesenia holds a Bachelors of Science in Computer Science from Florida International University and a Masters of Science in Digital Forensic from University of Central Florida.

STAFF

Senior Program Manager
The Linux Foundation

Michelle Favalora
Program Manager
The Linux Foundation

Kate Powell
Senior Marketing and Communications Manager
The Linux Foundation

Sally Cooper

Senior Program Manager
The Linux Foundation

Michelle Favalora

Michelle Favalora is the Senior Program Manager II for Alpha-Omega, an OpenSSF associated project, leading core business operations and grantee relations. Michelle brings over 10 years of experience in project optimization and program strategy with a focus on process improvement and building teams.

Program Manager
The Linux Foundation

Kate Powell

Senior Marketing and Communications Manager
The Linux Foundation

Sally Cooper

Sally Cooper is the Senior Marketing and Communications Manager for Alpha-Omega, an OpenSSF associated project, leading all marketing and communications activities. Sally brings over 25 years of experience in technology, with expertise in making complex concepts easy to understand. She thrives in building brand awareness, fostering open source community engagement, and driving impactful social media strategies.

AN ASSOCIATED PROJECT OF THE OPEN SOURCE SECURITY FOUNDATION