OSTIF advocates for critical open source projects. We make an impact by improving the open source software that the internet and networks depend on. After coordinating a source code audit of VeraCrypt (secure encryption) and shortly afterwards OpenVPN (secure browsing), OSTIF led the discovery and patching of 9 high severity/critical bugs, coordinated over 1700 hours of security review, and furnished 2 audit reports (post patching). Furthermore, OSTIF launched a bug bounty program to ensure continued review of the software. Lastly, OSTIF has created educational guides helping people take control of their information and securing it accordingly.