Published: 14 March 2026
Summary
Open-source developers are rapidly adopting AI coding agents to write tests, refactor code, remediate vulnerabilities and even rewrite entire open-source projects and republish them under different licenses. While this promises reduced maintainer burnout, it introduces significant new risks in software supply chain security, license compliance and OSS ecosystem viability. Software engineering, security and legal leaders should use this research to learn what is changing and how it impacts enterprise software delivery and take actions to reduce exposure.
Included in Full Research