Open source components have become an integral part of today’s software applications — it’s impossible to keep up with the hectic pace of release cycles without them. As open source usage continues to grow, so does the number of eyes focused on open source security research, resulting in a record-breaking number of published open source security vulnerabilities in 2019.
This research report focuses on open source security’s weakest and strongest points in the hopes of bringing some clarity the fast-paced and complex space of known open source security vulnerabilities.
In this report we’ll be looking at the number of open source vulnerabilities published this year, and then take a closer look at open source security vulnerabilities in popular programming languages, most common CWEs over the years, open source vulnerabilities’ scoring and severity, and vulnerabilities in the most popular open source projects that we all use and love.
