About 40 percent of industry professionals say their organizations have reduced their usage of open source software due to concerns about security, according to a survey conducted by data science firm Anaconda.
The company's 2022 State of Data Science report solicited opinions in April and May from 3,493 individuals from 133 countries and regions, targeting academics, industry professionals, and students involved in the open source community. About 16 percent of respondents identified as data scientists.
About 33 percent of commercial respondents said they had not scaled back on open source, 7 percent said they had increased usage, and 20 percent said they weren't sure. The remaining 40 percent said they had.
By commercial respondents, Anaconda means a data-science-leaning mix of business analysts, product managers, data and machine-learning scientists and engineers, standard IT roles such as systems administrators, and others in technology, finance, consulting, healthcare, and so on.
And by scale back, that doesn't mean stop: 87 percent of commercial respondents said their organization still allowed the use of open source. It appears a good number of them, though, are seeking to reducing the risk from relying on too many open source dependencies.
Anaconda's report found that incidents like Log4j and reports of "protestware" prompted users of open source software to take security concerns more seriously. Of the 40 percent who scaled back usage of open source, more than half did so after the Log4j fiasco.
Some 31 percent of respondents said security vulnerabilities represent the biggest challenge in the open source community today.
Most organizations use open source ..
Support the originator by clicking the read the rest link below.
