A recent report by Lineaje AI Labs reveals that the United States leads in open-source contributions and anonymous contributions, raising concerns about transparency and security in the software supply chain.
The U.S. accounts for 34% of global open-source contributions, followed by Russia at 13%. 20% of open-source contributions in the U.S. are anonymous, posing potential risks of hidden backdoors or vulnerabilities.
Industries such as defense, water, electricity, banking, and retail face challenges in software maintenance due to contributions from multiple countries.
Open-source software has maintenance gaps, with security weaknesses originating within open-source dependencies and 70% of components being poorly maintained.