The State of Open Source Security report 2019 highlights the growing concern of open source vulnerabilities, with 88% increase in application library vulnerabilities over two years and 70% of open source maintainers lacking skills to address security issues. The report also reveals that indirect dependencies account for 78% of overall vulnerabilities, making remediation complex. Additionally, it is found that top ten most popular docker images contain at least 30 vulnerabilities each, while ReDoS vulnerabilities in npm have spiked by 143%. To improve security, both open source maintainers and developers are advised to practice secure code review, regularly audit their code base for vulnerabilities, and implement a shift-left security strategy.