C003 — OSSRA Report: 87% Vulnerable, 581 Avg, 107% Increase — Reading List

Contents

• Must Read
• Should Read

Must Read

• Open Source Trends: OSSRA Report 2026
• Black Duck (formerly Synopsys) · February 25, 2026
• The Black Duck 2026 OSSRA report blog post confirms: 87% of all audited codebases contained at least one vulnerability, mean vulnerabilities per codebase rose 107% to 581, based on analysis of 947 commercial codebases across 17 industries.
• Why read: Primary source for all three figures in the claim; essential for verifying the exact numbers and understanding the sample composition.

Should Read

• Open source vulnerabilities per codebase surge by 107%
• SC World (trade publication) · February 26, 2026
• SC World reports on the OSSRA 2026 findings, confirming the 107% increase in average open source vulnerabilities per codebase.
• Why read: Independent trade press confirmation of the OSSRA figures, providing secondary verification.

← Back to item overview