The State of Software Security: 2016 Volume 7

dummy report

What Will You Learn?

Veracode’s latest “State of Software Security” is no mere survey report. The metrics presented here are based on real application risk postures, drawn from code-level analysis of billions of lines of code across 300,000 assessments performed over the past 18 months.

What You Will Learn:
Veracode's intention is to provide security practitioners with tangible AppSec benchmarks against which to measure their own programs. Following up on last year’s report, which focused heavily on benchmarks based on industry vertical performance, this year’s report offers valuable updates as well as takes a closer look at remediation analysis statistics and third-party component vulnerabilities across all industries.

It answers such key questions as:
  • What are the 10 most common vulnerability categories?
  • What percentage of vulnerabilities do my peers remediate?
  • How much impact do my remediation efforts have?
  • How does my fix rate compare to my industry peers? What does good look like?
  • How does my fix rate compare to my industry peers? What does good look like?



Questions? Contact Us | 1-888-937-0329

About Veracode

Veracode is the leading AppSec partner for creating secure software, reducing the risk of security breach, and increasing security and development teams’ productivity. As a result, companies using Veracode can move their business, and the world, forward. With its combination of process automation, integrations, speed, and responsiveness, Veracode helps companies get accurate and reliable results to focus their efforts on fixing, not just finding, potential vulnerabilities.

Veracode serves thousands of customers worldwide across a wide range of industries. The Veracode solution has assessed more than 78 trillion lines of code and helped companies fix more than 74 million security flaws.

Learn more at, on the Veracode blog and on Twitter.

© Veracode, Inc. All rights reserved. Veracode is a registered trademark of Veracode, Inc. in the United States and may be registered in certain other jurisdictions. All other product names, brands or logos belong to their respective holders. All other trademarks cited herein are property of their respective owners.