CISA Report Finds Most Open-Source Projects Contain Memory-Unsafe Code

Analysts found that 52% of open-source projects are written in memory-unsafe languages like C and C++.

More than half of open-source projects contain code written in a memory-unsafe language, a report from the U.S.’s Cybersecurity and Infrastructure Security Agency has found. Memory-unsafe means the code allows for operations that can corrupt memory, leading to vulnerabilities like buffer overflows, use-after-free, and memory leaks.

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis