Sponsored projects & programs.
The full list of initiatives funded by our sponsors — security work, fellowships, grants, and the tooling that keeps the BEAM ecosystem moving forward.
Aegis →
An open vulnerability-disclosure platform for the BEAM ecosystem. Coordinated reporting, advisories, and a public registry for the languages and libraries the community depends on.
CVE Numbering Authority →
ERLEF is an authorized CNA for the BEAM ecosystem. We assign CVE identifiers, coordinate disclosure, and publish advisories for the Erlang, Elixir, and Gleam communities.
Conference grants →
Tickets and travel support for engineers who'd otherwise miss CodeBEAM, ElixirConf, EUC, and other community events. Grants are reviewed on an ongoing basis.
EEF Fellows →
Formal recognition for community members who've made sustained, exceptional contributions to the BEAM ecosystem, nominated and approved according to the Erlang Ecosystem Foundation bylaws.
Hex.pm supply-chain security →
Ongoing security work on the Hex package repository — audits, supply-chain hardening, and tooling that keeps Hex trustworthy as the BEAM ecosystem's default package source.
BEAM hardening guidelines →
Reference documentation, secure-coding guidance, and operational hardening recommendations for teams running BEAM applications in production.
Vulnerability Disclosure Program →
Templates, processes, and tooling that ecosystem maintainers can adopt to handle vulnerability reports responsibly — the foundations on which Aegis and the CNA program operate.
Code-signing reference implementation →
A reference implementation for signing releases produced by the BEAM toolchain — making it easier for library authors and operators to verify package provenance.
Help fund the next one.
Every project on this page is made possible by sponsorship.
Become a Sponsor → Donate