Significant Percentage of External Code in Software Applications

If you look at a Boeing 787 Dreamliner, Boeing manufactures a tiny fraction of the overall parts that comprise the final aircraft. The remaining parts are sourced from Boeing’s vast hardware supply chain from vetted and stringently selected partners.

787 Dreamliner Structure Supply Chain Suppliers

The same is true in the software industry where most organizations build applications mostly comprised of code developed outside of their company. According to The Linux Foundation’s A Summary of Census II report, it has been estimated that Free and Open Source Software (FOSS) constitutes 70-90% of any given piece of modern software solutions. FOSS is an increasingly vital resource in nearly all industries, public and private sectors, among tech and non-tech companies alike.

If 80% or more of your application is comprised of code your team did not develop, then you need to manage the associated legal and security risk that comes with the additional exposure.