Analyzed
about 15 hours
ago.
based on code collected
about 16 hours
ago.
Project Summary
OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. It is also a general-purpose cryptography library.
OpenSSL is licensed under an Apache-style license, which basically means that you are free to get and use it for commercial and non-commercial purposes subject to some simple license conditions.
In a Nutshell, OpenSSL...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a very large development team
with stable Y-O-Y commits -
...
took an estimated 267 years of effort (COCOMO model)
starting with its first commit in December, 1998
ending with its most recent commit 25 days ago
Quick Reference
https://github.com/openssl/openssl
Project Security
Vulnerabilities per Version ( last 10 releases )
Project Vulnerability Report
Security Confidence Index
Poor security track-record
Favorable security track-record
Vulnerability Exposure Index
Many reported vulnerabilities
Few reported vulnerabilities
Did You Know...
-
...
nearly 1 in 3 companies have no process for identifying, tracking, or remediating known open source vulnerabilities
-
...
you can subscribe to e-mail newsletters to receive update from the Open Hub blog
-
...
in 2016, 47% of companies did not have formal process in place to track OS code
-
...
data presented on the Open Hub is available through our API
30 Day SummarySep 26 2025 — Oct 26 2025
|
12 Month SummaryOct 26 2024 — Oct 26 2025
|
Static Analysis ( Generated by Coverity Scan for openssl/openssl )
Repository URL: https://github.com/openssl/openssl
Version: 2025-10-26\ 311f7bd
- 2025-10-26
- Last Analyzed
- 673,364
- Lines of Code Analyze
- 0.0
- Defect Density
Defects by status for current build
- 1,895
- Total defects
- 1
- Outstanding
- 1,590
- Fixed
CWE Top 25 defects
No top 25 CWE defects were found.