Google releases new open-source security software program: Scorecards (ZDNet)

ZDNet: Google releases new open-source security software program: Scorecards. “According to the Synopsys Cybersecurity Research Center (CyRC) 2021 ‘Open Source Security and Risk Analysis’ (OSSRA) report, 95% of all commercial programs contain open-source software. By CyRC’s count, the vast majority of that code contains outdated or insecure code. But how can you tell which libraries and other components are safe without doing a deep code dive? Google and the Open Source Security Foundation (OSSF) have a quick and easy answer: The OpenSSF Security Scorecards.”

Leave a Reply

%d bloggers like this: