VendorsBlack Duck
Black Duck
Cybersecurity reports and statistics published by Black Duck
8 categories4 reports
Research Reports
Reports and publications from Black Duck
Recent Statistics & Reports
35% of respondents cite interpreting and operationalizing complex regulatory requirements as their biggest challenge.
1/1/2026•
ComplianceRegulatory
95% of surveyed organizations reported using AI tools in software development.
1/1/2026•
AI ToolsSoftware Development
Only 45% of the full respondent pool say they remediate critical software vulnerabilities within a day.
1/1/2026•
Vulnerability ManagementCritical Software VulnerabilitiesCritical Software Vulnerability Remediation
76% of organizations check AI code for security risks.
1/1/2026•
AI CodeSoftware DevelopmentAI Code Security Risks
59% of respondents that prioritize SBOM validation typically respond to critical software vulnerabilities within one day.
1/1/2026•
SBOMSBOM ValidationVulnerability Management
Only 24% of organizations have adopted comprehensive strategies to secure AI-generated code.
1/1/2026•
AI-Generated CodeSoftware DevelopmentAI-Generated Code Security
49% of organizations using at least three compliance controls remediate critical vulnerabilities within a day.
1/1/2026•
Compliance ControlsVulnerability ManagementCritical Vulnerabilities
Organizations that effectively track and manage open source dependencies are 85% more prepared to secure open source software compared to the overall average of 57%.
1/1/2026•
Open SourceSoftware SecurityOpen Source Dependencies
60% of organizations that perform automatic continuous monitoring report remediating critical software vulnerabilities within a day.
1/1/2026•
Vulnerability ManagementSoftware DevelopmentAutomatic Continuous Monitoring
63% of respondents that prioritize SBOM validation say they're highly prepared to evaluate third-party software.
1/1/2026•
Third-Party Software SecuritySoftware Supply ChainSBOM Validation
54% of organizations using at least four compliance controls remediate critical vulnerabilities within a day.
1/1/2026•
Compliance ControlsVulnerability ManagementCritical Vulnerabilities
A decisive shift towards memory-safe languages has been adopted by 80.4% of companies.
8/26/2025•
AI
31.5% of organizations produce SBOMs due to industry regulations.
8/26/2025•
AISBOMs
21.1% of companies lack confidence in their ability to prevent AI from introducing security vulnerabilities.
8/26/2025•
AISecurity vulnerabilities
70.8% of organizations now produce Software Bills of Materials (SBOMs).
8/26/2025•
AISBOMs
96.1% of organizations are integrating open source AI models into their products.
8/26/2025•
AI
18% of companies are affected by "Shadow AI".
8/26/2025•
AIShadow AI
39.4% of organizations produce SBOMs due to customer and partner requirements.
8/26/2025•
AISBOMs
89.3% of organizations are already using AI-powered coding assistants.
8/26/2025•
AIAI coding assistant
33% had open source software components with no license or a customized license.
2/25/2025
Showing first 20 results