The 4th Annual State of the Software Supply Chain Report is here. This year’s research highlights new methods cyber criminals are employing to infiltrate software supply chains, offers expanded analysis across languages and ecosystems, and more deeply explores the impact of government regulations and software liability on software development.
Key findings include:
- Open source vulnerabilities increased 120% YoY and their mean time to exploit compressed 300% YoY
- Public vulnerability databases lack information on more than 1.3 million open source security advisories
- Managing software supply chains through automated OSS governance reduces the presence of vulnerabilities by 50%
Download the full report for the detailed analysis by filling the form below: