A Good Security Investment by DHS
They’re paying for open source software to be scanned for security bugs, and then fixing them.
All the software scrutinized was found to have significant numbers of security flaws, Coverity said on Wednesday. Since 2006 the project has helped fix 7,826 open source flaws in 250 projects, out of 50 million lines of code scanned, the company said.
They find, on average, one security flaw per 1,000 lines of code. And when the flaw is fixed, everyone’s security improves.
Leave a comment