Security News > 2020 > May > 70 Percent of Mobile, Desktop Apps Contain Open-Source Bugs

70 Percent of Mobile, Desktop Apps Contain Open-Source Bugs
2020-05-25 13:00

A full 70 percent of applications being used today have at least one security flaw stemming from the use of an open-source library.

Most JavaScript applications contain hundreds of open-source libraries - some have more than 1,000 different libraries.

"In fact, it would be nearly impossible to innovate with software without these libraries. However, lack of awareness about where and how open source libraries are being used and their risk factors is a problematic practice."

Four main libraries represent the majority of the open-source bugs found in applications: Swift,.

"Forty-seven percent of the flawed libraries in applications are transitive - in other words, they are not pulled in directly by developers, but are being pulled in by the first library. This means that developers are introducing much more code, and often flawed code, than they might be anticipating."


News URL

https://threatpost.com/70-of-apps-open-source-bugs/156040/