Analyzed
1 day
ago.
based on code collected
1 day
ago.
Project Summary
The software toolchain includes static analyzers to check assertions about your program; optimizing compilers to translate your program to machine language; operating systems and libraries to supply context for your program. The Verified Software Toolchain project assures with machine-checked proofs that the assertions claimed at the top of the toolchain really hold in the machine-language program, running in the operating-system
In a Nutshell, Verified Software Toolchain (Coq)...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a small development team
with decreasing Y-O-Y commits -
...
took an estimated 212 years of effort (COCOMO model)
starting with its first commit in July, 2012
ending with its most recent commit about 1 month ago
Quick Reference
https://github.com/PrincetonUniv...
Project Security
Vulnerabilities per Version ( last 10 releases )
There are no reported vulnerabilities
Project Vulnerability Report
Security Confidence Index
Poor security track-record
Favorable security track-record
Vulnerability Exposure Index
Many reported vulnerabilities
Few reported vulnerabilities
Did You Know...
-
...
in 2016, 47% of companies did not have formal process in place to track OS code
-
...
learn about Open Hub updates and features on the Open Hub blog
-
...
nearly 1 in 3 companies have no process for identifying, tracking, or remediating known open source vulnerabilities
-
...
you can embed statistics from Open Hub on your site
30 Day SummaryAug 21 2025 — Sep 20 2025
|
12 Month SummarySep 20 2024 — Sep 20 2025
|
