Despite the fact that third party code in IoT projects has grown 17% in the past five years, only 56% of OEMs have formal policies for testing security. 73.6% of respondents rank the importance of security to current projects as important, very important or critical. Security has become a ubiquitous and paramount issue, based on the potential impacts to corporate risk, liability and damage to brand reputation. The pace of needed innovation outstripped the rate of resource growth within development and QA organizations.
Source: https://www.helpnetsecurity.com/2021/05/18/commercial-third-party-code/