Open source software security is being planned to be strengthened by the Cybersecurity and Infrastructure Security Agency through the Principles for Package Repository Security.
Article Link: CISA’s open source software security initiatives detailed | SC Media