Skip to main content
VendorsBlack Duck

Black Duck

Cybersecurity reports and statistics published by Black Duck

8 categories6 reports

Recent Statistics & Reports

60% of organizations that perform automatic continuous monitoring report remediating critical software vulnerabilities within a day.

1/1/2026
Vulnerability ManagementSoftware DevelopmentAutomatic Continuous Monitoring

Only 24% of organizations have adopted comprehensive strategies to secure AI-generated code.

1/1/2026
AI-Generated CodeSoftware DevelopmentAI-Generated Code Security

49% of organizations using at least three compliance controls remediate critical vulnerabilities within a day.

1/1/2026
Compliance ControlsVulnerability ManagementCritical Vulnerabilities

35% of respondents cite interpreting and operationalizing complex regulatory requirements as their biggest challenge.

1/1/2026
ComplianceRegulatory

Only 45% of the full respondent pool say they remediate critical software vulnerabilities within a day.

1/1/2026
Vulnerability ManagementCritical Software VulnerabilitiesCritical Software Vulnerability Remediation

54% of organizations using at least four compliance controls remediate critical vulnerabilities within a day.

1/1/2026
Compliance ControlsVulnerability ManagementCritical Vulnerabilities

76% of organizations check AI code for security risks.

1/1/2026
AI CodeSoftware DevelopmentAI Code Security Risks

59% of respondents that prioritize SBOM validation typically respond to critical software vulnerabilities within one day.

1/1/2026
SBOMSBOM ValidationVulnerability Management

A decisive shift towards memory-safe languages has been adopted by 80.4% of companies.

8/26/2025
AI

31.5% of organizations produce SBOMs due to industry regulations.

8/26/2025
AISBOMs

96.1% of organizations are integrating open source AI models into their products.

8/26/2025
AI

18% of companies are affected by "Shadow AI".

8/26/2025
AIShadow AI

21.1% of companies lack confidence in their ability to prevent AI from introducing security vulnerabilities.

8/26/2025
AISecurity vulnerabilities

70.8% of organizations now produce Software Bills of Materials (SBOMs).

8/26/2025
AISBOMs

39.4% of organizations produce SBOMs due to customer and partner requirements.

8/26/2025
AISBOMs

89.3% of organizations are already using AI-powered coding assistants.

8/26/2025
AIAI coding assistant

64% of open source components were transitive dependencies.

2/25/2025

97% of all applications evaluated contained open source software.

2/25/2025

90% of the applications contain components more than 10 versions behind the most current version.

2/25/2025

The number of open source files in an average application has tripled over the last four years.

2/25/2025

Showing 21-40 of 51 results