Components Becoming Major Source Of CVEs

Simon Phipps:

A story on InfoWorld today.

Originally posted on Meshed Insights & Knowledge:

Earlier today Sonatype released the results of  their annual survey. The survey looks at the extent to which developers use open source components, with a particular focus on how they balance the competing needs of speed and security. The data makes it clear that security is very often not the priority.

The results of the survey show the massive extent to which developers now rely on components. Of course, this has been the case for many years, but the full maturation of the concept of component assembly rather than code writing is well illustrated here.

View original 169 more words

Follow

Get every new post delivered to your Inbox.

Join 6,965 other followers

%d bloggers like this: