Source-available ≠ open source.

Licenses like MongoDB’s SSPL allow you to view code but restrict freedoms like modification, redistribution, or commercial use.

From a security perspective, source-available often suffices for code audits, but it lacks the trust guarantees of true open source.