30.60% of repositories do not require signed commits.

May 27, 2026

30.60% of repositories do not require signed commits. — This cybersecurity statistic was published by Orca Security in May 2026. It covers topics including Repositories, Code Integrity. The original data appears in 2026 State of Application Security Report . For the full methodology and detailed findings, refer to the original report.

Source

View Original Report

Published on 4/7/2026

Share or Copy this stat

Frequently Asked Questions

What does this statistic say?

30.60% of repositories do not require signed commits. This data was published by Orca Security and covers Repositories, Code Integrity.

Where does this data come from?

This statistic comes from 2026 State of Application Security Report , published by Orca Security on May 27, 2026. You can view the original report at https://orca.security/lp/2026-state-of-application-security-report/.

What cybersecurity topics does this cover?

This statistic relates to Repositories, Code Integrity. Browse more statistics on Repositories or from Orca Security.

CYBERSTATS

30.60% of repositories do not require signed commits.

Source

Share or Copy this stat

Frequently Asked Questions

Want More Statistics Like This?

Related Statistics

24.82% of repositories predate GitHub’s 2023 default token hardening and may retain legacy access settings.

26.35% of repositories require no code review before merging.

Almost 20% of developers let AI automatically save changes to the project's main code repository without human review.

More than 81% of organizations deploy vulnerable dependencies.

41.88% of production organizations have leaked AI or ML credentials.

57.87% of organizations have IAM users without MFA.

Browse by Topic

Stay Ahead of Cyber Threats