The survey uncovers how CTOs and R&D Managers are managing the use of open source libraries by their developers
WhiteSource, leading provider of automated tools for open source license compliance and security management, today announced the Open Source Usage Practices Survey. The survey is one of several studies aimed at fostering proper use of open source.
“As more companies use open source components to boost productivity, it becomes important to properly manage open source inventory and adoption processes. Specifically, to avoid legal risks, it is critical to ensure compliance with open source licenses. Further, since open source libraries become an integral part of any software product, it is mandatory to update open source libraries to fix security vulnerabilities and other bugs,” said Rami Sass, CEO of WhiteSource.
In previous research, WhiteSource identified some interesting findings regarding common use of open source. Specifically, that
- Most developers do not track properly all dependencies of open source libraries, and as a result may miss when a dependency comes under a different license.
- Open source suffers from similar rate of security vulnerabilities and defects as any other code. Open source communities are usually faster to fix vulnerabilities, but users are updating less frequently. About 23% of projects contained open source with known vulnerability, despite the fact that a more recent version was available.
The Open Source Usage Practices Survey is open to the general public today. The answers will be kept completely anonymous and by filling out the survey participants will be entered into a drawing for an iPad mini.
The survey results will be shared with participants and will also be presented in a special webinar.
The survey is available to the general public athttps://www.surveymonkey.com/s/MHK6JRH
WhiteSource is the leading provider of agile open source lifecycle management solutions. The White Source cloud-based service helps companies of all sizes fully realize the advantages of open source software while mitigating the legal, business and technical risks.
WhiteSource is very affordable and easy to use — without over-burdening developers. White Source features a dynamic repository of information about open source libraries and their licenses, If you have any questions regarding information in these press releases please contact the company listed in the press release. Our complete disclaimer appears here license risks, compliance requirements, security vulnerabilities, and new versions. The automated service makes it easy to implement best-practice business processes for open source adoption, usage, updates, and ongoing compliance. Founded in 2011, WhiteSource is a privately held company with offices in New York and Tel Aviv.
For more information, visit: http://www.whitesourcesoftware.com