2018 Open Source Security and Risk Analysis – SlashdotMedia AdOps Asset Management

2018 Open Source Security and Risk Analysis

The Black Duck by Synopsys Open Source Security and Risk Analysis (OSSRA) report provides an in-depth look at the state of open source security, license compliance, and code-quality risk in commercial software. Each year, the Black Duck OnDemand audit services group conducts open source audits on thousands of applications for its customers—primarily in conjunction with merger and acquisition transactions. This year’s analysis was done by the Synopsys Center for Open Source Research & Innovation (COSRI) and examines findings from the anonymized data of over 1,100 commercial codebases audited in 2017. Industries represented in the report include the automotive, big data (predominantly artificial intelligence and business intelligence), cyber security, enterprise software, financial services, healthcare, Internet of Things (IoT), manufacturing, and mobile app markets.

The OSSRA report includes insights and recommendations intended to help organizations and security, risk, legal, development, and M&A teams better understand the open source security and license risk landscape as they strive to improve their application risk management processes.

Start Here
I understand that by clicking the button below I agree to receive quotes, newsletters and other information from Synopsys, sourceforge.net and its partners regarding business software, IT services and related products. I understand that I can withdraw my consent at anytime. I understand by clicking on the green button below I am agreeing to the SourceForge Terms of Use and the Privacy Policy which describe how we use and share your data.