AppSec Decoded: What are organizations doing to manage open source vulnerabilities?
2021-04-01 01:00:00 Author: www.synopsys.com(查看原文) 阅读量:208 收藏

Posted by on Wednesday, March 31st, 2021

In this AppSec Decoded interview, we look at the top takeaways from the ‘DevSecOps Practices and Open Source Management in 2020’ report. 

The “DevSecOps Practices and Open Source Management in 2020” report from Synopsys explores a survey of over 1,500 IT professionals from cyber security, software development, software engineering, and web development, and highlights the top strategies organizations are using to manage open source vulnerabilities.

One of the most important data points from the survey is that on average, open source code is present in 70% of codebases. This highlights how easy it is for hackers to exploit today’s open source vulnerabilities, and it reinforces the importance of DevSecOps and open source management practices.

So what can organizations do to manage open source vulnerabilities in their codebases? One thing is clear: implementing policies to govern the use of open source and integrating application security testing tools is vital.

Check out our latest interview of AppSec Decoded with Taylor Armerding as we discuss the what you can learn from the “DevSecOps Practices and Open Source Management in 2020” report.

Subscribe to the blog for the latest AppSec news


文章来源: https://www.synopsys.com/blogs/software-security/appsec-decoded-open-source-vulnerabilities/
如有侵权请联系:admin#unsafe.sh