1‎ > ‎2‎ > ‎


73700319 story Security Java Open Source Programming

Report: Aging Java Components To Blame For Massively Buggy Open-Source Software 130

Posted by timothy on Tuesday June 16, 2015 @11:44AM from the bit-rot-multiplier-applies-here-too dept. itwbennett writes: The problem isn't new, but a report released Tuesday by Sonatype, the company that manages one of the largest repositories of open-source Java components, sheds some light on poor inventory practices that are all-too-common in software development. To wit: 'Sonatype has determined that over 6 percent of the download requests from the Central Repository in 2014 were for component versions that included known vulnerabilities and the company's review of over 1,500 applications showed that by the time they were developed and released each of them had an average of 24 severe or critical flaws inherited from their components.'


Subpages (1): 3