In 2022, the most popular approaches to identifying vulnerabilities in codes was to find them when running a Static Application Security Testing (SAST) tool or when using a Software Composition Analysis (SCA) service. At the same time, 22 percent of respondents stated that they found them though an external security audit.
How do you find out about vulnerabilities in your code?
Adjust the presentation of the statistic and data points.
Share the statistic on social media channels or embed the statistic in your
website using "Embed Code", where available.
Cite this statistic and select one of the following formats: APA, Chicago, Harvard, MLA & Bluebook.
Print the statistic including description and metadata.
Chart type
How do you find out about vulnerabilities in your code?
Share this statistic
You have no right to use this feature.
Make sure to contact us if you are interested in scientific citation.
You can upgrade your account to enable this functionality for all statistics.
This feature is not available with your current account.Request access
OSS maintainers and security subject matter experts
Supplementary notes
* Sample size for OSS security perspectives was 539 participants.
Sample size for OSS best practices for secure software development was 72 participants.
Sample size for OSS security was 433 participants.
Citation formats
Alexandra Borgeaud
Research expert covering cybersecurity and tech in Latin America
Learn more about how Statista can support your business.
Synk. (July 7, 2022). How do you find out about vulnerabilities in your code? [Graph]. In Statista. Retrieved April 20, 2025, from https://www.statista.com/statistics/1322283/global-approaches-to-identifying-vulnerability-in-codes/
Synk. "How do you find out about vulnerabilities in your code?." Chart. July 7, 2022. Statista. Accessed April 20, 2025. https://www.statista.com/statistics/1322283/global-approaches-to-identifying-vulnerability-in-codes/
Synk. (2022). How do you find out about vulnerabilities in your code?. Statista. Statista Inc.. Accessed: April 20, 2025. https://www.statista.com/statistics/1322283/global-approaches-to-identifying-vulnerability-in-codes/
Synk. "How Do You Find out about Vulnerabilities in Your Code?." Statista, Statista Inc., 7 Jul 2022, https://www.statista.com/statistics/1322283/global-approaches-to-identifying-vulnerability-in-codes/
Synk, How do you find out about vulnerabilities in your code? Statista, https://www.statista.com/statistics/1322283/global-approaches-to-identifying-vulnerability-in-codes/ (last visited April 20, 2025)
How do you find out about vulnerabilities in your code? [Graph], Synk, July 7, 2022. [Online]. Available: https://www.statista.com/statistics/1322283/global-approaches-to-identifying-vulnerability-in-codes/
Profit from additional features with an Employee Account
Please create an employee account to be able to mark statistics as favorites.
Then you can access your favorite statistics via the star in the header.
Profit from the additional features of your individual account
Currently, you are using a shared account. To use individual functions (e.g., mark statistics as favourites, set
statistic alerts) please log in with your personal account.
If you are an admin, please authenticate by logging in again.
