Sonatype Resource Center

Executive Brief: Addressing Security Concerns in Open Source Components

This executive brief summarizes the findings of an independent and comprehensive security review of the 31 most commonly used open source components and provides practical guidance and best practices for addressing security risks.

You may also like:

451 Research: Is open source the new sexy? Sonatype on the catwalk.

With the realization that as much as 90% of new software written today is assembled from open source components, enterprises are turning to inspection to figure out their risk. Sonatype is in a good position to take advantage of this rising awareness with its repo manager and component lifecycle management offerings.

Securosis: 2014 Open Source Development and Application Security Survey Analysis

This year, security analyst firm Securosis added their perspective to the always eye-opening results of the yearly Sonatype Open Source Development survey. See what they had to say about the impact of open source development on overall application security.