Open source developers make progress in adopting secure practices

No Comments

open source

Secure software development practices are increasingly being adopted by open source software (OSS), and are underscoring the importance of managing OSS risk.

The latest report from development platform Synopsys uses results from the free Coverity Scan static analysis solution to assess the quality of development practices and the overall maturity of the OSS ecosystem.

"Due to the ubiquity of open source and the vital role it plays in virtually all types of software, understanding and managing its risks can no longer be optional," says Andreas Kuehlmann, senior vice president and general manager of the Synopsys Software Integrity Group. "The Coverity Scan Report highlights the progress of some of the most mature and widely used open source projects, and it provides invaluable insights for the broader software community that depends on the integrity of open source."

Since January 2016, 4,117 active projects have submitted builds for analysis. Of those, nearly 50 percent (2,049) use Travis CI, indicating using of continuous integration/continuous deployment (CI/CD) practices. In addition 2,509 projects have been triaged, which requires developers to have intimate knowledge of the codebase. Plus, 1,120 projects were configured to make use of modeling, a mechanism for improving the quality of their analysis results. The adoption of CI/CD and remediation of actionable defects by developers highlights the value of static analysis to the OSS ecosystem and indicates the increasing maturity of OSS projects.

The results also indicate that commercial and OSS ecosystems are converging. According to some of the largest commercial users of Coverity, software shipped to customers can contain up to 90 percent open source code. In addition, there are now companies founded entirely on OSS proving that OSS is now the norm.

You can find out more about the report and Coverity Scan on the Synopsys website. You can also sign up for a live Q&A to discuss the findings to be held on November 8th.

Photo CreditESB Professional / Shutterstock

Tags: , ,
No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

New study shows why the places you feel safest online might actually be the most dangerous

Helpdesks struggle to keep up with cyber threats

UK Online Safety Act leads to rise in searches for fake ID and dark web access

1 in 5 workers are misusing GenAI, according to a new survey

Golden Concept launches iPhone 17 backplates and cases with pricey materials

Lookout uses AI to guard against mobile social engineering threats

Responding to the challenge of deepfakes [Q&A]

Most Commented Stories

This updated Windows 11 clone is Linux underneath and makes your old PC run faster -- get it now

17 Comments

Forget Windows 11, Windows 12.2 is the 'next evolution' of Microsoft's OS

15 Comments

As Windows 10 reaches end of life, Windows 11 is LOSING market share

11 Comments

The brilliant Windows 12 is everything Windows 11 isn't -- and the Microsoft OS we deserve

10 Comments

Why using a VPN is becoming more important than ever

8 Comments

Age verification laws are killing web traffic

8 Comments

Microsoft is rolling out Windows 11 25H2

5 Comments

Brits warned of scams ahead of emergency alert test

5 Comments

Why Trust Us



At BetaNews.com, we don't just report the news: We live it. Our team of tech-savvy writers is dedicated to bringing you breaking news, in-depth analysis, and trustworthy reviews across the digital landscape.

BetaNews, your source for breaking tech news, reviews, and in-depth reporting since 1998.

Regional iGaming Content

© 1998-2025 BetaNews, Inc. All Rights Reserved. About Us - Privacy Policy - Cookie Policy - Sitemap.