Open Source Vulnerability Trends Shift in 2025

GitHub's latest analysis reveals a notable shift in open source vulnerability trends for 2025, with a significant decrease in reviewed advisories hitting a four-year low. However, this decline is attributed to fewer older vulnerabilities being reviewed, not a reduction in newly reported issues, which actually saw a 19% increase. Concurrently, malware advisories surged, indicating a growing threat landscape. This data highlights the evolving challenges in supply chain security and the need for robust AI and automation in DevSecOps practices.