The US government has issued guidance on securing open-source software (OSS) in operational technology (OT) critical infrastructure environments. The joint advisory, published by the Cybersecurity and Infrastructure Security Agency (CISA), Federal Bureau of Investigation (FBI), National Security Agency (NSA), and US Department of the Treasury, is designed to help senior leadership and operations personnel at OT and industrial control systems (ICS) better manage risk from OSS use.

Source: Infosecurity