47% of retail executives reported having very low to moderate visibility into their software supply chain.

32% of successful Canadian software buyers checked encryption standards of vendors before purchase.

38% of successful Canadian software buyers evaluated a vendor's reputation for incident response before purchase.

41% of successful Canadian software buyers considered patching and update practices before purchase.

40% of Canadian software buyers reported satisfaction with their purchase in 2026.

99% of satisfied Canadian software buyers narrowed their choices to five vendors or fewer, compared to 90% of disappointed buyers.

62% of satisfied Canadian software buyers expect to increase their software spend next year, compared to 79% of disappointed buyers.

Successful Canadian software adopters typically complete vendor selection in about three months, while disappointed buyers take four to five months.

Approximately 50% of satisfied Canadian software adopters planned their rollout stages in advance, while only 27% of disappointed buyers did the same.

49% of successful Canadian software buyers paid close attention to a vendor’s history of breaches or attacks before purchase.

89% of Canadian software buyers who experienced implementation disruptions later regretted their decision in 2026.

81% of organizations lack full visibility into how and where AI is being used across the software development lifecycle.

40% of the more than 10,000 Model Context Protocol (MCP) servers created in under a year had no license in 2025.

82% of the more than 10,000 Model Context Protocol (MCP) servers interact with sensitive APIs, creating additional vulnerabilities in 2025.

Only 20% of dependency versions recommended by AI coding assistants were found to be safe to use in 2025.

About 75% of the more than 10,000 Model Context Protocol (MCP) servers were built by individuals without enterprise-grade protections in 2025.

The proportion of safe dependency recommendations increased from 20% to 57% when AI agents were equipped with security tools in 2025.

60% of organizations have experienced data breaches or theft in software development, AI, and analytics environments, an 11% increase from the previous year.

76% of financial services leaders highlight third-party software vulnerabilities as a top concern.

Software accounts for roughly 30% of security budgets, making it the second-largest line item after staff and compensation.