OpenSourceSecurity

Software is Eating the World

This joint report by Microsoft and WhiteSource discusses the difference in finding & fixing vulnerabilities in open source components opposed to proprietary code, how to grasp the unique challenges of open source security and how to tackle them, as well as how to master the best practices of managing your open source security risks.

  • Chapter 1: Which is Safer: Open Source or Proprietary Code?
  • Chapter 2: Open Source Vulnerabilities Detection and Publication
  • Chapter 3: Open Source Vulnerability Databases
  • Chapter 4: Remediating Vulnerable Open Source Components
  • Chapter 5: Prioritization of Open Source Vulnerabilities
  • Chapter 6: Join the Security Shift Left Revolution
  • Chapter 7: How Can Software Composition Analysis Help?
  • Summary: Software is Eating the World