Channels ▼
RSS

Open Source

43% Python Open Source Libraries "Potentially Risky"


Open source software management company (with an obvious interest in highlighting alleged open source shortcomings) WhiteSource has released a study of over 40,000 Python open source libraries.

The study suggested that a large percentage of the libraries are under restrictive licenses. The repercussion here may be that while many Python programmers report substantial productivity gains, the use of open source Python components introduces new challenges.

"Python open source projects are not different from any other open source projects: In order to enjoy the many benefits, companies should proactively manage their use", said Rami Sass, CEO of WhiteSource.

WhiteSource's technology sets out to continuously track open source usage and automatically enforce open source licensing policies. Correctly tracking, monitoring, and updating open source inventory and licensing is (arguably) one of the most tedious and least favorite tasks for developers.

Sass explains that WhiteSource provides (1) up-to-date open source inventory reports (including dependencies); (2) license risk analysis and compliance reports; and (3) proactive alerts on security vulnerabilities whenever discovered, as well as available fixes.

Findings include:

  • 23% of open source Python open source libraries have ambiguous licenses or no license record at all.
  • 13% of open source Python open source libraries are under GPL 2.0 license
  • 5% of open source Python open source libraries are under GPL 3.0 license
  • 2% of open source Python open source libraries are under AGPL 3.0 license


Related Reading


More Insights






Currently we allow the following HTML tags in comments:

Single tags

These tags can be used alone and don't need an ending tag.

<br> Defines a single line break

<hr> Defines a horizontal line

Matching tags

These require an ending tag - e.g. <i>italic text</i>

<a> Defines an anchor

<b> Defines bold text

<big> Defines big text

<blockquote> Defines a long quotation

<caption> Defines a table caption

<cite> Defines a citation

<code> Defines computer code text

<em> Defines emphasized text

<fieldset> Defines a border around elements in a form

<h1> This is heading 1

<h2> This is heading 2

<h3> This is heading 3

<h4> This is heading 4

<h5> This is heading 5

<h6> This is heading 6

<i> Defines italic text

<p> Defines a paragraph

<pre> Defines preformatted text

<q> Defines a short quotation

<samp> Defines sample computer code text

<small> Defines small text

<span> Defines a section in a document

<s> Defines strikethrough text

<strike> Defines strikethrough text

<strong> Defines strong text

<sub> Defines subscripted text

<sup> Defines superscripted text

<u> Defines underlined text

Dr. Dobb's encourages readers to engage in spirited, healthy debate, including taking us to task. However, Dr. Dobb's moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing or spam. Dr. Dobb's further reserves the right to disable the profile of any commenter participating in said activities.

 
Disqus Tips To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy.
 

Video