In the rapidly evolving world of software development, open source technologies are taking center stage. The latest Trusted Open Source report, published in December 2025, provides an in-depth analysis of trends in open source consumption, utilizing data from container image projects, language libraries, and more. As AI technology becomes more integrated into development processes, the landscape is shifting, influencing both the speed of software creation and the security measures required.
Analyzing data from December 2026 to February 2026, the report examines over 2,200 unique container image projects and identifies 33,931 vulnerability instances. This analysis highlights the growing influence of AI on the types of container images used and the number of discovered and mitigated vulnerabilities.
AI-Driven Growth in Popular Technologies
Python and PostgreSQL are experiencing significant growth, reflecting the increased adoption of AI. Python remains the most popular image, used by 72.1% of customers, while PostgreSQL usage has surged by 73% quarter-over-quarter. These trends indicate a shift towards modern AI stacks, enabling diverse applications across industries.
The growing popularity of these technologies aligns with AI’s expanding role in development. Python’s prevalence as a language for machine learning and automation, alongside PostgreSQL’s use in AI workloads, underscores the evolving platform landscape.
Standardization and Platform Evolution
The current data reveals a convergence around standard platform components. Language ecosystems such as Python, Node, Java, Go, and .NET account for a significant portion of the top 25 images used in production. This standardization is complemented by the adoption of cloud-native components, ensuring consistent architecture across various environments.
Chainguard Base, a minimal distroless image, is becoming a critical foundation for developer tooling. Utilized by 36.3% of customers, it allows teams to build secure, customized environments tailored to their needs, emphasizing the importance of a flexible and secure base for software development.
Security Challenges and Compliance Shifts
AI’s influence extends to security, accelerating both software development and vulnerability discovery. The number of unique CVEs has increased by 145%, with a corresponding 300% rise in fix applications. This rapid pace highlights the dual challenge of increased development speed and enhanced vulnerability detection.
Despite these challenges, Chainguard has maintained efficient remediation times, with high-severity vulnerabilities being addressed swiftly. The report also notes a shift towards compliance-driven adoption, as seen in the rise of FIPS-compliant images, marking a broader trend towards regulatory adherence in software deployment.
As the software ecosystem expands, organizations must prioritize security within the development lifecycle. Chainguard’s commitment to providing secure, compliant solutions positions it as a key player in navigating the complexities of modern software security.
For more insights on enhancing your open source security, connect with our team today.
