The TTX is open to all Community Day attendees as audience observers and will be divided into two main phases:
- Phase One: Scenario Walkthrough
A moderated panel of experts will walk through a security incident scenario, each stepping into a specific role, such as an open source maintainer, a package registry operator, an open source software consumer, etc. Through roleplay, panelists will demonstrate how each stakeholder might respond during a real-world incident. - Phase Two: Postmortem & Discussion
Following the scenario, panelists and selected contributors will engage in a collaborative debrief. They’ll reflect on how the incident played out, share insights, and identify opportunities for improving coordination, tools, and response processes.
This session brings together professionals with expertise in open source software production, distribution, vulnerability management, and incident response.
- Audience members will have the opportunity to engage through a dedicated Q&A session and can submit questions throughout the exercise using Slido or a similar platform.
- Through participation in the TTX, attendees will:
- Deepen their understanding of open source software security and incident response.
- Gain access to a template or framework for running their own tabletop exercises.
- Explore how OpenSSF tools and technologies can support response efforts.
- Discover opportunities for process improvement or new tooling in security workflows.
