Despite Post-Log4j Security Gains, Developers Can Still Improve

A majority of software development companies have not yet incorporated thorough security testing into their workflows, with only 40% performing security checks in their development environment, reveals Snyk’s 2023 State of Software Supply Chain Security report. Furthermore, only 48% test code prior to committing it and 40% use no supply chain technologies. The study recommends that each developer uses three types of scans. On a positive note, 94% of companies have improved their application security approach in the past 18 months.