Synopsys – Open Source Security and Risk Analysis

This year’s Open Source Risk Analysis Report (OSSRA) was done by the Synopsys Center for Open Source Research & Innovation (COSRI) and examines findings from the anonymized data of over 1,100 commercial codebases audited in 2017. Industries represented in the report include the automotive, big data (predominantly artificial intelligence and business intelligence), cyber security, enterprise software, financial services, healthcare, Internet of Things (IoT), manufacturing, and mobile app markets. The OSSRA report includes insights and recommendations intended to help organizations and security, risk, legal, development, and M&A teams better understand the open source security and license risk landscape as they strive to improve their application risk management processes.