The SOS Fund will provide security auditing, remediation, and verification for key open source software projects. The Fund is part of the Mozilla Open Source Support program (MOSS) and has been allocated $500,000 in initial funding. Mozilla is committed to tackling the need for more security in the open source ecosystem through three steps:Mozilla will contract with and pay professional security firms to audit other projects code;. Mozilla will work with the project maintainer(s) to support and implement fixes, and to manage disclosure; and.”]
Source: https://blog.mozilla.org/en/mozilla/help-make-open-source-secure/