Building the FOSS security commons to identify vulnerabilities

We need a new approach for identifying FOSS vulnerabilities, using open data and FOSS tools.
Exploring the state of open source licensing clarity

Provenance and licensing of third-party software should be available as an open structured data.