openPR Logo
Press release

New Kusari Research Finds Security Teams Stuck in Reactive AppSec as Software Supply Chain Accountability Tightens

02-18-2026 02:02 PM CET | IT, New Media & Software

Press release from: ABNewswire

As compliance frameworks like the EU Cyber Resilience Act, NIST SSDF, and US federal software supply chain mandates tighten, this report reveals most teams remain trapped in reactive security models that surface risk too late and fail to integrate into de

As compliance frameworks like the EU Cyber Resilience Act, NIST SSDF, and US federal software supply chain mandates tighten, this report reveals most teams remain trapped in reactive security models that surface risk too late and fail to integrate into de

Kusari's Application Security in Practice report finds most organizations remain stuck in reactive AppSec as regulatory pressure, AI-driven development, and dependency complexity grow. Limited visibility into transitive dependencies, fragmented ownership, and poor workflow integration leave teams exposed. High-performing teams reduce vulnerabilities by embedding continuous, workflow-native security into CI/CD and consolidating tools. www.kusari.dev.
RIDGEFIELD, Conn. - February 18, 2026 - Kusari [https://www.kusari.dev/], a leading innovator in software supply chain security and SBOM management, today released Application Security in Practice , a new research report based on a survey of software developers and security professionals. The report examines how organizations manage application security and software supply chain risk as regulatory pressure increases, AI-driven development expands, and dependency complexity grows.

The findings reveal a widening gap between how software is built and how security is enforced. As compliance frameworks tighten, most teams remain trapped in reactive security models that surface risk too late and fail to integrate into developer workflows.

"Most teams are not failing because they lack effort or tools. They are failing because visibility, ownership, and integration have not kept pace with modern software development. Organizations that succeed treat security as a continuous, workflow-native capability rather than a periodic compliance exercise." - Tim Miller, Co-Founder and CEO of Kusari

Key Findings

*
Transitive dependency blind spots persist. Only 28 percent of respondents have strong visibility into transitive dependencies, leaving organizations exposed to hidden risk from inherited code.

*
Legacy systems drive the most exposure. 59 percent cite legacy systems as their top software supply chain risk, rising to 84 percent in healthcare.

*
Reactive security consumes developer time. Nearly half spend five or more hours weekly on security incidents, pulling capacity from development.

*
Frequent checks reduce vulnerabilities. Teams assessing security on every pull request report 40 percent fewer monthly vulnerabilities than those checking only at release.

*
AI adoption outpaces AI security trust. 85 percent use AI coding assistants, but just 9 percent consider AI-driven security analysis essential.

*
Tooling integration remains a barrier. 38 percent cite difficulty integrating security tools into developer workflows.

*
Fragmented ownership weakens accountability. Split ownership between security and development teams creates longer review cycles and higher risk.

High-performing teams consolidate tools, embed security checks into CI/CD pipelines, and adopt shared ownership models. The full report is available at https://www.kusari.dev/report.

About Kusari

Kusari delivers end-to-end software supply chain security, helping organizations understand and secure what they build. Founded by cybersecurity experts with deep experience in regulated industries, Kusari delivers actionable insights that help teams build secure software without friction. Powered by comprehensive SBOM analysis, Kusari provides a unified, highly accurate view of direct and transitive dependencies, vulnerabilities, and license risks across open source, AI-generated, and third-party code, enabling teams to pinpoint issues, prioritize fixes, and stay compliant, all with automated, developer-friendly workflows. Backed by J2 Ventures, Glasswing Ventures, and Unusual Ventures, Kusari is active in the open source security ecosystem, including several CNCF and OpenSSF initiatives.

Media Contact
Company Name: Kusari
Contact Person: Jennifer Pospishek
Email:Send Email [https://www.abnewswire.com/email_contact_us.php?pr=new-kusari-research-finds-security-teams-stuck-in-reactive-appsec-as-software-supply-chain-accountability-tightens]
Phone: 408.839.2054
Country: United States
Website: http://www.kusari.dev

Legal Disclaimer: Information contained on this page is provided by an independent third-party content provider. ABNewswire makes no warranties or responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you are affiliated with this article or have any complaints or copyright issues related to this article and would like it to be removed, please contact retract@swscontact.com



This release was published on openPR.

Permanent link to this press release:

Copy
Please set a link in the press area of your homepage to this press release on openPR. openPR disclaims liability for any content contained in this release.

You can edit or delete your press release New Kusari Research Finds Security Teams Stuck in Reactive AppSec as Software Supply Chain Accountability Tightens here

News-ID: 4395853 • Views:

More Releases from ABNewswire

Kieran J. Woll Redefines Modern Espionage Fiction With a Thriller That Asks What Happens When the Enemy Is Everywhere and Nowhere
Kieran J. Woll Redefines Modern Espionage Fiction With a Thriller That Asks What …
Kieran Woll Creative Works LLC unveils a sophisticated espionage narrative that challenges the conventions of the genre by embedding its threat not in a foreign government or rogue state but in the invisible architecture of daily life. The story follows Drake, Voss, and Raven as they confront a network designed to be undetectable and indestructible. In an era when readers increasingly seek fiction that reflects the genuine complexities of the modern
Craft Pilot Targets Three High-Growth Markets With Science-Backed Cognitive Wellness Products Built for Real-World Impact
Craft Pilot Targets Three High-Growth Markets With Science-Backed Cognitive Well …
Craft Pilot is strategically expanding into the neurodivergent, gerontology, and corporate wellness sectors with products designed to engage the brain through tactile interaction and purposeful cognitive challenges. The company's science-informed approach is attracting growing interest from consumers and organizations seeking practical mental wellness solutions. The conversation around wellness has evolved dramatically over the past decade. What was once dominated by gym memberships and dietary supplements now encompasses mental health, mindfulness, and
First-Time Entrepreneur Turns Lifelong Coffee Passion Into Grateful Coffee, a New Online Destination for Flavor-Focused Drinkers
First-Time Entrepreneur Turns Lifelong Coffee Passion Into Grateful Coffee, a Ne …
A lifelong coffee enthusiast has channeled personal passion into a new venture, launching Grateful Coffee as an online destination for quality-driven coffee lovers. The brand focuses on offering diverse, great-tasting coffee varieties and building a loyal customer base through authentic dedication to the craft. Behind every memorable brand there is a story, and for Grateful Coffee, that story begins with a first-time entrepreneur who decided that a lifelong love of coffee
Solar Heroes Helps Singapore Homes and Businesses Beat the Heat and Slash Cooling Bills with Premium Solar Control Window Films
Solar Heroes Helps Singapore Homes and Businesses Beat the Heat and Slash Coolin …
As energy prices climb and the tropical sun grows more punishing, the Singapore based supplier and installer turns attention to its lineup of high performance films that reject up to 99.9 percent of UV rays and up to 62 percent of total solar energy, with pricing that starts at just S$4.80 per square foot. SINGAPORE - July 10, 2026 - Living and working in Singapore means living with the sun. It

All 5 Releases


More Releases for Kusari

Kusari Brings Enterprise-Grade AI Code Review & Dependency Management to CNCF an …
Kusari Inspector is now free to all CNCF and OpenSSF projects, delivering AI-powered dependency, license and security intelligence right in developer pull requests. RIDGEFIELD, Conn. & AMSTERDAM - March 23, 2026 - Kusari [https://www.kusari.dev/] (KUBECON EU Stand #1141), a leading innovator in software supply chain security, today announced partnerships with the Cloud Native Computing Foundation (CNCF) and the Open Source Security Foundation (OpenSSF) to make Kusari Inspector available free of charge