Sonatype, kambani inoziva nezvekudzivirira kubva mukurwiswa kunokanganisa kutsiva kwezvikamu zvesoftware uye zvinotsamira (supply chain), yakaburitsa mhedzisiro yeongororo (PDF, 62 mapeji) yezvinetso nekutsamira uye kuchengetedza mapurojekiti akavhurika muJava, JavaScript, Python uye .NET mitauro, yakapihwa muMaven Central, NPM, PyPl uye Nuget repositories. Kwegore, kuwedzera kwenhamba yemapurojekiti munzvimbo dzakavhurika dzakavhurika dzakacherechedzwa neavhareji ye29%. Huwandu hwemapasuru ekurodha kubva kumatura ari mubvunzo akawedzera ne2023% muna 33, asi mukuenzanisa, muna 2021 huwandu hwekurodha hwakawedzera ne73%.
Kuita kwakashata mumatura kwakawedzera zvakanyanya: kubva kutanga kwegore, zviuru mazana maviri nemakumi mana neshanu mapakeji ane hutsinye akaonekwa uye huwandu hwekurwiswa kwakarekodhwa kwakanangana nekutsiva kuvimba kwakapetwa kaviri.
Mapurojekiti mazhinji anoenderera mberi nekushandisa shanduro dzisina njodzi, semuenzaniso, 23% yekudhawunirodha yeJava package Log4j ichiri neshanduro dzine njodzi dzakasimba dzakagadziriswa muna 2021. MuMaven Central repository, inosvika 12% yezvese kudhawunirodha ndeyezvikamu zvine zvinozivikanwa kusagadzikana. Paavhareji, pane ese marepositori, mugove wekudhawunirodha ekare vhezheni yemapakeji anowira muzvikamu zvine njodzi (sekune husina kusimba husina kurongeka) i20% (mu80% yezviitiko, vhezheni yazvino inodhawunirodha). Mune 96% yezviitiko, kudhawunirodha kwezvikamu zvine hurema kungadai kwakadziviswa nekusarudza mavhezheni ayo nyaya yakatogadziriswa.
Dambudziko rakakosha mukuchengetedza chengetedzo zvakare kunaka kwekugadzirisa chirongwa. Mune ecosystems yemitauro yeJava neJavaScript, iri idambudziko rakakura - mugore rapfuura, chirongwa chechishanu chega chega (18.6%) chakaunzwa muMaven Central neNPM, uye chakachengetwa mugore rapfuura, chakamiswa. Pakati pemamiriyoni 1.176 akaongororwa mapurojekiti aripo muMaven, NPM, PyPl uye Nuget repositories, 11% chete (118 zviuru) inoramba ichichengetwa.
Chidzidzo ichi chakaongororawo 621 nyanzvi dzekuvandudza kubva kumakambani akasiyana. 67% yevakabvunzwa vanotenda kuti zvikumbiro zvavo hazvishandise maraibhurari ari munjodzi, gumi muzana vakasangana nezviitiko zvekuchengetedza zvakakonzerwa nekusagadzikana mune yakavhurika sosi software mumwedzi gumi nemiviri yapfuura, uye 10% havana chokwadi. 12% yemakambani anoona kuvepo kwezvikamu zvisina njodzi mukati mezuva 20 rekuburitswa kweruzivo rwekusagadzikana, 28% - kubva 1 kusvika 39 mazuva, uye 1% - kupfuura vhiki.
Source: opennet.ru
