HERMES: using commit-issue linking to detect vulnerability-fixing commits

HERMES: using commit-issue linking to detect vulnerability-fixing commits

Software projects today rely on many third-party libraries, and therefore, are exposed to vulnerabilities in these libraries. When a library vulnerability is fixed, users are notified and advised to upgrade to a new version of the library. However, not all vulnerabilities are publicly disclosed, and...

Full description

Saved in:
Bibliographic Details
Main Authors: NGUYEN, Truong Giang, KANG, Hong Jin, LO, David, SHARMA, Abhishek, SANTOSA, Andrew E., SHARMA, Asankhaya, ANG, Ming Yi
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2022
Subjects:
Vulnerability curation
Silent fixes
Commit classification
Commit-issue link recovery
Software Engineering
Online Access:https://ink.library.smu.edu.sg/sis_research/7742
https://ink.library.smu.edu.sg/context/sis_research/article/8745/viewcontent/378600a051.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English

Internet

https://ink.library.smu.edu.sg/sis_research/7742
https://ink.library.smu.edu.sg/context/sis_research/article/8745/viewcontent/378600a051.pdf

Similar Items