InfoQ Homepage The Ultimate Guide to Open Source Security

The Ultimate Guide to Open Source Security

Company: WhiteSource

Despite the heavy reliance on open source, the software industry has been generally lax when it comes to ensuring that these components meet basic security standards. This is due in large part to their underestimation of the amount of open source components that they are actually using in their products, and that the nature of open source vulnerabilities are fundamentally different than those found in proprietary code.

This technical paper breaks down where the blind spots are in understanding the risks posed by vulnerable open source components, how vulnerabilities are discovered and reported, how to address issues with technologies for more efficient remediation, and provides approaches to managing open source security across your organization.


Is your profile up-to-date? Please take a moment to review and update.

Note: If updating/changing your email, a validation request will be sent

Company name:
Company role:
Company size:
You will be sent an email to validate the new email address. This pop-up will close itself in a few moments.