Open Source SecurityCon has always been about bringing people together to strengthen trust in open source. From its beginnings within TAG Security to its growth as a standalone conference, and now returning to KubeCon + CloudNativeCon alongside the Open Source Security Foundation (OpenSSF), the event has become a gathering place for anyone passionate about securing our shared ecosystem. As a co-located event, it will bring together software developers, security engineers, public sector leaders, CISOs, CIOs, and technology innovators. Through interactive discussions, expert-led sessions, and hands-on activities, participants will dive into emerging security challenges, explore the latest industry innovations, and share best practices that are shaping the future of secure software development.
Who will get the most out of attending this event?
You don’t need to be a security practitioner to attend! This event will have lots of great security content, but it is a place for all developers to come and get their security questions answered. Whether you are a security engineer, DevOps professional, software developer, cloud architect, IT manager, risk and compliance officer, or open source contributor, this event has something for you.
Join us if you’re an open source contributor or maintainer who wants to improve the security of their projects and learn about the landscape of open source security.
Security is no longer just a consideration. It is a necessity. Open Source SecurityCon 2025 is a welcoming space for anyone interested in building more secure, scalable software. Even if you’re not an open source developer, the ways of securing open source can be applied to any code and development process. The best part, all the tools and frameworks that will be showcased are open source. That means you can leverage these things anywhere!
What will the day look like?
At Open Source SecurityCon 2025, your day will be a mix of learning and connecting. We have an amazing lineup of talks on topics from software supply chain security to AI security to security policy. There will be three talk tracks for most of the event with breaks and lunch where all attendees can come together for a hallway track.
Should I do any homework first?
Just have a look at the schedule before you come! We will have a lot of content, so make sure you add the talks you’re interested in to your calendar.
Find your community!
Collaboration is the heartbeat of open source, and in security it becomes our greatest strength. Meet the changemakers shaping a safer future, and explore how you can help protect every project.
A note from the co-chairs
We’re excited about all things security! The fun will continue on with the Security track of the main conference. There’s a great TAG Security & Compliance blog post about all these fun things: https://tag-security.cncf.io/blog/kubecon-na-2025-schedule-announced/.
We’ll also have a TAG Security and Compliance booth in the Project Pavillion. Be sure to come by and say “Hi!”