Next to software quality, maintainability, security and Cloud Fitness, we also measure the use of Open Source components. When outsourcing software, but also when developing software, certain Open Source components are used on a regular basis. The problem is that many of us don’t know what is actually inside written in these components, while at the same time they are easy to use and create many possibilities. The ease of use is an advantage and at the same time a risk. This mainly regards the licences and updates of components. Do you know if your software (or parts of it) exists of Open Source component, and, if yes, do you know what the risks are?