Towards Measuring Vulnerabilities and Exposures in Open-Source Packages

June 29, 2022 Β· Declared Dead Β· πŸ› Proceedings of the 5th International Data Science Conference - iDSC2023

πŸ‘» CAUSE OF DEATH: Ghosted
No code link whatsoever

"No code URL or promise found in abstract"

Evidence collected by the PWNC Scanner

Authors Tobias Dam, Sebastian Neumaier arXiv ID 2206.14527 Category cs.SE: Software Engineering Cross-listed cs.CR Citations 4 Venue Proceedings of the 5th International Data Science Conference - iDSC2023 Last Checked 4 months ago
Abstract
Much of the current software depends on open-source components, which in turn have complex dependencies on other open-source libraries. Vulnerabilities in open source therefore have potentially huge impacts. The goal of this work is to get a quantitative overview of the frequency and evolution of existing vulnerabilities in popular software repositories and package managers. To this end, we provide an up-to-date overview of the open source landscape and its most popular package managers, we discuss approaches to map entries of the Common Vulnerabilities and Exposures (CVE) list to open-source libraries and we show the frequency and distribution of existing CVE entries with respect to popular programming languages.
Community shame:
Not yet rated
Community Contributions

Found the code? Know the venue? Think something is wrong? Let us know!

πŸ“œ Similar Papers

In the same crypt β€” Software Engineering

Died the same way β€” πŸ‘» Ghosted