Skip to content

C003 — H1:

Contents

Statement: The Synopsys/Black Duck OSSRA report (a recent edition, likely 2024 or 2025) states that 87% of audited codebases contain at least one known open source vulnerability, with an average of 581 vulnerabilities per codebase and a 107% year-over-year increase.

Supporting Evidence Would Show

  • The OSSRA report (specific edition) containing the exact figures: 87%, 581 average, 107% YoY increase.
  • Press coverage or summaries of the OSSRA report citing these figures.
  • Synopsys/Black Duck blog posts or press releases with these numbers.

Eliminating Evidence Would Show

  • The OSSRA report containing significantly different figures.
  • Evidence that these figures come from a different report or a different year's edition than claimed.
  • The OSSRA report not existing in the claimed edition.

← Back to item overview