The OpenStack Security Project is a group of OpenStack developers who are passionate about security in OpenStack. The project has multiple activities including code projects (Anchor, Bandit), threat analysis work and several documentation activities including issuing security advisories, security notes and authoring the OpenStack Security Guide.

You can find more information on the OpenStack Security Project at the OpenStack Security Wiki and the OpenStack Security Landing Page