Do insecure open source components threaten your apps?
Open Source components are a boon to developers, allowing them to efficiently write code without reinventing the wheel. But since open source lacks the notification infrastructure of commercial software, organizations must maintain a running inventory of open source components and their dependencies in production applications or risk deploying apps with known vulnerabilities.
Read more: Do insecure open source components threaten your apps?
Story added 31. March 2012, content source with full text you can find at link above.