Legit Security's report reveals that application development environments across all sectors are plagued by serious security risks, with 89% of companies facing pipeline misconfigurations and 46% using AI inunsafe ways. The risks extend beyond source code flaws, as the expanding attack surface introduces even more vulnerabilities with the increased reliance on third-party components. Notably, many security teams lack awareness of AI usage, contributing to the overall risk landscape. Teams are urged to bolster security hygiene to prevent potential supply chain attacks that exploit these vulnerabilities.
With software development that is faster, more automated, more dynamic, and highly reliant on third parties, new opportunities to introduce risk abound.
Our research uncovered great risks everywhere throughout the development process."
These results highlight that teams are overlooking risks in their development environments and CI/CD pipelines, and are inviting the next supply chain attack by neglecting critical security hygiene.
According to the report, 89% of companies have pipeline misconfiguration issues and 46% are using AI models in source code in a risky way.
Collection
[
|
...
]