Black Duck’s “The State of Embedded Software Quality and Safety 2025” report highlights AI’s transformative role in embedded software, revealing that 89% of developers and 96% of security professionals utilize AI tools. However, weak governance leaves 21% uncertain about mitigating vulnerabilities. The report also notes the prevalence of Shadow AI, affecting 18% of developers. Notably, 71% of organizations are now producing Software Bills of Materials (SBOMs) primarily to meet customer demand, while 80% have adopted memory-safe programming languages, with Python gaining ground over C++. Despite 86% of executives deeming projects successful, only 56% of developers share this optimism, indicating an optimism gap regarding business risks. Reinforcing the need for comprehensive AI governance, security experts emphasize managing risks throughout the software development life cycle. Organizations must develop tailored governance structures to promote collaboration across departments, prioritizing ethics and safety, while enhancing visibility into AI’s integration into workflows for better security management.
Source link
Revolutionary Black Duck Research Highlights How AI and Supply Chain Transparency Are Transforming the Embedded Software Landscape
Share
Read more