WisdomInterface
ReportSecurity

2021 State of Open-source Security Report

Trends and Best Practices From Real-world Software Supply Chains

Open-source libraries help software developers meet aggressive deadlines. As a result, these libraries and their classes continue to proliferate and grow in complexity—increasing the risk they pose while making it more difficult to secure modern applications.

The 2021 State of Open-source Security Report uses telemetry from actual applications protected by Contrast OSS and Contrast Assess to reveal key trends about library usage, vulnerabilities, and best practices. Key findings include:

  • While the average application contains 118 libraries, only 38% of libraries are active.
  • The average library uses a version that is 2.5 years old—which increases the risk of unaddressed vulnerabilities.
  • The average Java application has 50 open-source library vulnerabilities.
  • High-risk licenses are present in 69% of Java applications and 33% of Node applications—exposing organizations to significant legal consequences.
ReportSecurity

    Download the Complete Resource:












    We take your privacy seriously at Contrast Security; security is what we’re all about in the first place. We use the information you provide to us to ensure you get more information about the topics that may be of interest to you. By submitting this form, you agree to our collection and use of your information in accordance with our Privacy Policy. To manage your email preferences, click here.

    SUBSCRIBE

      Subscribe for more insights



      By completing and submitting this form, you understand and agree to WisdomInterface processing your acquired contact information as described in our privacy policy.

      No spam, we promise. You can update your email preference or unsubscribe at any time and we'll never share your details without your permission.