Flaws lurking in open source code may lead to a new Heartbleed

Application security testing provider Veracode has discovered that after an initial scan, seven in ten applications contain a security flaw in an open source library.

The company’s new research highlights how using open source can introduce flaws, increase risk and add to security debt. To compile its new State of Software Security (SOSS): Open Source Edition report, Veracode analyzed the component open source libraries across its platform database of 85,000 applications which account for 351,000 unique external libraries.

Source Article