From the Help!-Help!-dept:. First results are in for the Department of Homeland Security’s vulnerability survey of some 40 Open Source projects. Early findings, released by Stamford University and source code analysis software vendor Coverity reveal that the LAMP stack has a higher-than-average code quality, with fewer than 0.2 defects per 1,000 lines of code.

Linux had a defect density of 0.335, compared to Apache with 0.250, MySQL with 0.224, PHP with 0.474, Perl with 0.186, and Python with 0.372. The lowest defect density was 0.051 for the XMMS (X Multimedia system) project, while the highest was 1.237 for the Amanda backup and recovery project.

The Open Source code analysis study is part of the three-year Vulnerability Discovery and Remediation Open Source Hardening Project, launched by DHS in January. It will provide a baseline for security and quality in Open Source software, across as many as 40 Open Source projects. The study was carried out at Stanford University using Coverity's Prevent Source code analysis tool and is part of the DHS’ initiative to develop technologies to protect the nation's telecommunication infrastructure.

oetrends.com

Note: I know I feel safer.