Open Source Security Risks Continue To Rise

The 2025 Open Source Security and Risk Analysis (OSSRA) report reveals that 86% of commercial codebases contain vulnerabilities, with 81% harboring high-or-critical-risk vulnerabilities. The average number of open-source files in applications has tripled over the past four years, highlighting the massive risk posed by outdated and unmonitored open-source components. The report emphasizes the urgent need for improved transparency, dependency management, and security-first approaches to open-source software usage.