2018 Open Source Security & Risk Analysis
Vulnerability and license risk continues to grow
With the growth of open source comes risk. The 2018 Open Source Security and Risk Analysis (OSSRA) report provides an in-depth look at the state of open source security, license compliance, and code-quality risk in commercial software.
In 2017, 33% of audited codebases containing Apache Struts contained the vulnerability that led to the Equifax breach.
Industries represented in the report include automotive, big data, cyber security, enterprise software, financial services, healthcare, Internet of Things (IoT), manufacturing, and mobile apps.
The OSSRA report provides insights and recommendations to help security, risk, legal, development, and M&A teams understand the open source security and license risk they may face. Read it to learn how to defend your organization against the security threats and license compliance risks that may come with your use of open source.