2020 Open Source Security and Risk Analysis (OSSRA) Report

深入潜入开源安全,许可合规性和代码质量风险的状态

Open source is a great foundation for modern software development. But when not managed properly, open source can expose you to numerous risks—including licensing, security, and code quality risk.

The 2020 Open Source Security and Risk Analysis (OSSRA) Report is the resource you need to learn why you need to identify and manage the open source in your code. Based on the anonymized data from more than 1,250 audited codebases, the report provides insights and eye-opening statistics about open source security, license compliance, and code quality risk in commercial software.

下载2020 ossra报告


2020 ossra报告包含详细的部分:

  • 需要软件材料(BOM)
  • Open source composition of codebases audited in 2019
  • 未分割的开源漏洞的威胁
  • 我们的审核中找到的漏洞
  • 关于设置漏洞修补优先级的建议
  • 在开源组件中检查许可风险
  • 开源使用中的运行因素

Download the report today.

2020 Open Source Security and Risk Analysis (OSSRA) Report