Software development lifecycle firm Sonatype releases State of Software Supply Chain report. Third-party components account for 80 percent to 90 percent of the code found in a typical enterprise application today. Of those downloaded components, 1 in 16 has security defects, report says. The company estimates that it would cost an enterprise with 2,000 applications about US$7.4 million to remediate only 10 percent of defects and vulnerabilities introduced by consuming components. An analysis of 25,000 enterprise applications revealed that 6.8 percent of them had at least one known vulnerability.”]