Nextgov

Half of critical open source projects contain memory-unsafe code, U.S. cyber agency says

Over half of critical open source tools are underpinned by code that does not internally manage memory spillover risks, opening them up to potential exploitation by hackers, according to findings ...
Dark Reading

Code-Injection Bugs Bite Google, Apache Open Source GitHub Projects

A pair of security vulnerabilities discovered in the GitHub environments of two very popular open source projects from Apache and Google could be used to stealthily modify project source code, steal ...
Infosecurity-magazine.com

Majority of Critical Open Source Projects Contain Memory Unsafe Code

More than half (52%) of critical open source projects contain code written in a memory-unsafe language, according to a new analysis by the Cybersecurity and Infrastructure Security Agency (CISA) in ...
TechRepublic

CISA Report Finds Most Open-Source Projects Contain Memory-Unsafe Code

CISA Report Finds Most Open-Source Projects Contain Memory-Unsafe Code Your email has been sent Analysts found that 52% of open-source projects are written in memory-unsafe languages like C and C++.

For open-source programs, AI coding tools are a mixed blessing

AI coding tools have enabled a flood of bad code that threatens to overwhelm many projects. Building new features is easier ...
Dark Reading

CISA Flags Memory-Unsafe Code in Major Open Source Projects

A comprehensive new study has unearthed fresh details on the extensive and troubling use of memory-unsafe code in major open source software (OSS) projects. However, the chances that fresh insight on ...
Bleeping Computer

CISA: Most critical open source projects not using memory safe code

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published research looking into 172 key open-source projects and whether they are susceptible to memory flaws. The report, cosigned ...