Google releases new open-source security software program: Scorecards
1 min read
Jul 02, 2021
Scorecards 2.0 , Google's new open-source security software program, can quickly tell you just how secure - or insecure - open-source software really is.
Some naive people may still think they're not using open-source software. They're wrong. Everyone does. According to the Synopsys Cybersecurity Research Center (CyRC) 2021 "Open Source Security and Risk Analysis" (OSSRA) report, 95% of all commercial programs contain open-source software. By CyRC's count, the vast majority of that code contains outdated or insecure code. But how can you tell which libraries and other components are safe without doing a deep code dive? Google and the Open Source Security Foundation (OSSF) have a quick and easy answer: The OpenSSF Security Scorecards.
Related Articles
1 - 0 min read
Linux Kernel 6.7 Released with Various Security Improvements
1 - 0 min read
Multiple Chromium DoS, Info Disclosure Vulns Fixed [Updated]
