On May 12-13, 2022, the Open Source Software Security Foundation (OpenSSF) joined with 90 private-sector executives and experts from key U.S. federal cyber defense agencies to discuss a plan to improve the security of the open source software ecosystem. The outcome of the two day summit was a framework, “10 Streams of Investment for Open Source Security.” In this presentation, Jim Zemlin, executive director of the Linux Foundation, will present the ten steps in the program, the observations and recommendations of the summit workgroups, and how you can become involved in the project.