Security is developers' top concern for open source components

Developers rate security as their top concern when dealing with open source components, above integration and functionality, according to a new study. The report from open source security and license compliance management company WhiteSource reveals that an average developer invests 15 hours a month dealing with open source security vulnerabilities, but only a small fraction of that time (25 percent) is devoted to actual remediation. There's has been a significant rise in the number of open source vulnerabilities, up 60 percent from 2016 according the report, which presents development and security teams with the challenge of ensuring that their products… [Continue Reading]