It’s been four years since OWASP first put third-party vulnerability risks squarely on the appsec map when it included the problem in its Top 10 list. But in that time, the risk has only grown as increasingly more applications today depend heavily on open-source libraries, frameworks, and other components, all with their own vulnerabilities.
It’s a very large attack surface for applications today and one which has increased chances of security headaches. Here are some of the latest stats on this hidden problem.
