You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
We first show the work done month over month. This is followed by the cumulative results. Finally we show language specific breakdown of the cumulative results.
May
Month
Dec 2023
Jan 2024
Feb 2024
Mar 2024
Apr 2024
May 2024
Projects analyzed
328
300
530
780
712
785
Projects with no bugs
293
279
525
776
708
784
Total bugs filed
56
13
7
7
4
7
Security/Reliability bugs filed
15
8
6
5
2
5
Bugs with a fix suggestion
50
10
2
2
4
0
Bugs with a PoC exploit
4
1
2
3
0
0
Fixes merged by maintainers
27
10
5
3
4
0
Security/Reliability fixes merged
6
6
2
1
0
0
Fixes ignored by maintainers
1
1
1
0
2
0
Reports still open
28
2
1
4
0
7
High Severity Bugs* (Cumulative)
Month
Dec 2023
Jan 2024
Feb 2024
Mar 2024
Apr 2024
May 2024
Weak Crypto
8
8
8
8
8
8
Data Race
2
5
5
5
6
6
XSS
5
5
7
8
8
8
Log Injection
4
4
4
4
4
4
Path Manipulation
0
0
3
5
5
5
Insecure Deserialization
2
2
2
2
2
2
OS Command Injection
0
0
0
2
2
2
Inappropriate umask
1
1
1
1
1
1
Open Redirect
0
1
1
1
1
1
Security Misconfiguration
1
1
1
1
1
1
Sensitive Data Leak
1
1
1
1
1
1
SSRF
1
1
1
1
1
1
TOTAL
25
29
34
39
40
40
A high severity bug is any one of the following: (1) An injection related bug, (2) a weak cryptography related bug, (3) an access control related bug (4) a security or a reliability bug that is typically of medium priority but has been categorized as a high priority bug because it is found in a popular project (100+ forks).