Security vendor Veracode analyzed 400,000 scans of applications written in Java,.Net, Android, iOS, PHP, and several other languages. More applications are being scanned for security vulnerabilities on a monthly or more frequent basis than ever before, suggesting increased adoption of DevSecOps practices. But developers can do more to accelerate the adoption of formalized application security practices at their organizations. Developers should be more careful about third-party and open source component use, and be willing to use security experts as consultants rather than adversaries.”]