Applications are complex, changing systems made up of legacy code, decoupled microservices, public APIs, and third-party services that rely on nested open source and third-party dependencies. They’re built using third-party development environments, build tools, and pipelines and are deployed in hybrid and multicloud environments. Hidden in this latticework are security vulnerabilities that threaten the livelihood of the business. Security, development, and operations must work together to secure and protect applications and the sensitive data they access. Use this report to benchmark your application security program, understand the latest attack vectors, and stay on top of emerging security trends.