Report: Open Source Software plagued with vulnerabilities
This is according to the 2018 Open Source Security and Risk Analysis (OSSRA) report compiled and published recently by the Synopsys Centre for Open Source Research and Innovation.
The OSSRA provides an in-depth look at the state of open source security, licence compliance and code-quality risk in commercial software. This year's analysis examined the data of over 1 100 commercial codebases audited in 2017 by Black Duck's On-Demand audit services department.
According to the report, open source components are governed by about 2 500 known open source licences, many with obligations and different levels of restrictions. However, many users of open source software simply ignore these, often in the mistaken belief that open source software is "free", and free means being able to do with the software as one likes.
Report Available @ https://www.synopsys.com/content/dam/synopsys/sig-assets/reports/2018-ossra.pdf
Regards
Mr. Pralhad Jadhav
Master of Library & Information Science (NET Qualified)
Senior Manager @ Knowledge Repository
Khaitan & Co
Twitter Handle | @Pralhad161978
Mobile @ 9665911593
No comments:
Post a Comment