An analysis of nearly 2,000 software packages published by Endor Labs found 95% of all application vulnerabilities can be traced back to a transitive dependency created when a developer used an open source component. The study, conducted by the Station 9 research arm of Endor Labs, a provider of a platform for identifying software dependencies, […]
The post Massive Number of Transitive Dependencies Traced to Open Source Code appeared first on DevOps.com.
Source: DevOps.com