The Linux Foundation Projects
Skip to main content

Alpha-Omega is an associated project of the OpenSSF, established in February 2022, funded by Microsoft, Google, and Amazon, and with a mission to protect society by catalyzing sustainable security improvements to the most critical open source software projects and ecosystems. The project aims to build a world where critical open source projects are secure and where security vulnerabilities are found and fixed quickly.

Learn More

CONTRIBUTORS

Organizations join Alpha-Omega because they want to take an active role in improving the security of open source software models.

Inquire to Join

Intro to the Alpha-Omega Project

ABOUT ALPHA-OMEGA

Partnering with open source software project maintainers to systematically find new, as-yet-undiscovered vulnerabilities in open source code – and get them fixed – to improve global software supply chain security.

Alpha” will work with the maintainers of the most critical open source projects to help them identify and fix security vulnerabilities, and improve their security posture.

Omega” will identify at least 10,000 widely deployed OSS projects where it can apply automated security analysis, scoring, and remediation guidance to their open source maintainer communities.

STAFF

Senior Program Manager
The Linux Foundation

Michelle Martineau
Principal Security PM Manager
Microsoft

Michael Scovetta
OSS Supply Chain Security
Google

Bob Callaway
AWS
Principal, Open Source

Henri Yandell
Program Manager
The Linux Foundation

Naomi Washington
Technical Strategist

Michael Winser

Senior Program Manager
The Linux Foundation

Michelle Martineau

Michelle Martineau is the senior Program Manager for Alpha-Omega, an OpenSSF project, leading core business operations and grantee relations. Michelle brings over 8 years of experience in project optimization and program strategy with a focus on process improvement and building teams.

Principal Security PM Manager
Microsoft

Michael Scovetta

Michael Scovetta leads a security team at Microsoft, focused on understanding and addressing emerging security threats related to open source software and the ecosystem around it. He and his team do this by building security tools, advising engineering teams, and evangelizing good practices. Within OpenSSF, Michael co-leads the Alpha-Omega project and leads the Identifying Security Threats working group. Michael brings around 25 years of software engineering and security experience and earned a Master of Engineering in Computer Science from Cornell University and  Bachelor of Science from Hofstra University.

OSS Supply Chain Security
Google

Bob Callaway

Bob Callaway is the technical lead and manager of the supply chain integrity group in Google’s Open Source Security Team. He and his team directly contribute to critical secure supply chain projects and drive communication & adoption of best practices throughout the open source ecosystem. Bob is a member of the Technical Advisory Council for sigstore, a Linux Foundation / OpenSSF set of projects focused on improving transparency and UX of software supply chains. Before joining Google in 2021, Bob was a member of Red Hat’s Office of the CTO where he was responsible for emerging technology strategy with strategic partners (including IBM) and a principal architect at NetApp where he focused on contributions to OpenStack and storage automation projects. He holds a PhD in Computer Engineering from NC State University where he also serves as an adjunct assistant professor in the ECE department.

AWS
Principal, Open Source

Henri Yandell

Program Manager
The Linux Foundation

Naomi Washington

Naomi Washington is a Program Manager with over 10 years of experience in administration, event, and project management. Committed to sharing expertise on effective program management, she’s driven to boost project and community engagement through innovative operational excellence. Capitalizing on being an operational generalist, she’s able to sustain service excellence and advance organizational goals.

Technical Strategist

Michael Winser

AN ASSOCIATED PROJECT OF THE OPEN SOURCE SECURITY FOUNDATION

Close Menu