"Sandworms and Secure Builds: Navigating the Spicy Desert of Open Source Security", offers open source developers and managers of open source security, a transformative journey through the perilous sands of the open source desert, inspired by the wisdom of Dune. (Knowledge of Dune is completely optional) Exploring the treacherous terrain of open source release pipeline, attendees uncover hidden vulnerabilities akin to elusive sandworms. Drawing from the Fremen's resilience, they learn to fortify defenses, integrating security seamlessly to shield against threats. Key insights include securing artifacts to safeguard integrity of open source code, implementing robust access controls, and crafting effective incident response plans. The presentation will address potential issues program managers may face when implementing these controls at scale, based on practical experience. Armed with the wisdom and fortified with practical insights, attendees will navigate the open source landscape with confidence, safeguarding open source projects from digital peril.