Meaghan McBee from Veracode shares a…

Meaghan McBee from Veracode shares a few results from their State of Software Security: Open Source Edition report. I noted this stat: โ€œ79 percent of the time developers never update third-party libraries once theyโ€™re in a codebase.โ€

I like this take from Rey Bango on this particular statistic:

โ€œYep seems about right but not because developers donโ€™t want to do the right thing. Theyโ€™re just spread thin due to ongoing resource demands.โ€

Some developers are lazy, but in my experience, itโ€™s more often the case they are overworked. ๐Ÿ˜ซ

Similar Posts