Developers’ Tool Improves Open Source Security, Trims Defects

January 11, 2008
No Comment

“Source code scans, such as those being performed on open source projects for the Department of Homeland Security, have become an important new tool in eliminating bugs at many of the projects, open source developers say.At the same time, the scans are illustrating that average open source projects are, well, average, when it comes to creating bugs. Commercial code and some of the open source projects under review are showing one code defect or security exposure per 1,000 lines of code. But the best projects are showing a defect rate far lower than that. They’re also illustrating how open source, unlike some commercial teams, is willing to air its defects and clean them up quickly.” (Information Week)