Skip to content

C003 — H1:

Contents

Statement: The OSSRA report states that 87% of audited codebases contain at least one known open source vulnerability, with an average of 581 vulnerabilities per codebase and a 107% year-over-year increase, and these figures are accurately reported from the source.

Supporting Evidence Would Show

  • The OSSRA report (2025 or 2026 edition) containing these exact figures
  • Press coverage or summaries of the OSSRA report confirming these statistics
  • The report's methodology section describing the audit sample and measurement approach

Eliminating Evidence Would Show

  • The actual OSSRA report containing substantially different figures
  • Evidence that these figures are from a different year's report than claimed
  • The report containing these figures but with important caveats that change their meaning

← Back to item overview