There is growing concern about maintainers self-sabotaging their work in order to take political or economic stances, a practice referred to as "protestware". Our objective is to understand the discourse aro...
详细信息
There is growing concern about maintainers self-sabotaging their work in order to take political or economic stances, a practice referred to as "protestware". Our objective is to understand the discourse around discussions on such an attack, how it is received by the community, and whether developers respond to the attack in a timely manner. We study two notable protestware cases i.e., *** and es5-ext. Results indicate that protestware discussions are spread more quickly on the GitHub platform, while security vulnerabilities are faster on social media. By establishing a taxonomy of protestware discussions, we identify posts that express stances and provide technical mitigation instructions. We applied a thematic analysis to 684 protestware related posts to identify five major themes during the discussions: i. disseminate and response, ii. stance, iii. reputation, iv. communicative styles, v. rights and ethics. This work sheds light on the nuanced landscape of protestware discussions, offering insights for both researchers and developers into maintaining a healthy balance between the political or social actions of developers and the collective well-being of the open-source community.
In order to create software that is reliable, efficient, and of the highest quality, it is imperative to predict and address bugs during the development stage. Early detection of faults is crucial;yet developing a cos...
详细信息
In order to create software that is reliable, efficient, and of the highest quality, it is imperative to predict and address bugs during the development stage. Early detection of faults is crucial;yet developing a cost-effective and successful advanced bug prediction model presents challenges. This research endeavor aims to achieve precise bug identification by exploring the utilization of various machine learning techniques on training and testing datasets. Multiple machine learning methods have been devised to identify and learn from software defects. This study employs machine learning techniques to conduct a comprehensive examination of software bug detection, offering valuable insights to the software industry. It synthesizes existing research on bug prediction, detailing different methods and highlighting their effectiveness, advantages, and limitations. This comprehensive analysis offers valuable guidance to researchers and software developers seeking to enhance bug detection methods for the creation of higher-quality software.
With the rapid development of artificial intelligence technology, its application in the field of education and teaching is becoming increasingly widespread, bringing revolutionary changes to traditional education mod...
详细信息
This paper presents BC-SBOM, a novel blockchainbased system designed to enhance the management of software Bills of Materials (SBOMs). By leveraging blockchain technology, BC-SBOM ensures secure storage and sharing of...
详细信息
ISBN:
(纸本)9791188428137
This paper presents BC-SBOM, a novel blockchainbased system designed to enhance the management of software Bills of Materials (SBOMs). By leveraging blockchain technology, BC-SBOM ensures secure storage and sharing of SBOMs, while providing a comprehensive global view of dependencies among software components. The system also supports rapid propagation of alerts for newly discovered vulnerabilities, thereby increasing responsiveness to potential threats. Offering superior reliability, transparency, and availability compared to traditional SBOM tools, BC-SBOM aims to significantly improve the management of complex software systems and contribute to the advancement of software security practices. Copyright 2025 Global IT research Institute (GIRI). All rights reserved.
Understanding human values like honesty, security, power, and fairness is crucial for designing trustworthy software systems. Recently, the softwareengineering community has recognized the importance of considering h...
详细信息
ISBN:
(纸本)9783031783852;9783031783869
Understanding human values like honesty, security, power, and fairness is crucial for designing trustworthy software systems. Recently, the softwareengineering community has recognized the importance of considering human values when developing software systems. However, there is no mature approach to considering human values as a first-order concern in softwareengineering. The exact meaning of such values is often vague or unclear, which makes it difficult to treat them systematically and break them down into traceable requirements, implementation, and testing artifacts. In this vision paper, we propose a systematic approach to seamlessly integrate human values into the requirements engineering process. Concretely, we introduce the concept of "value tactics", which are tangible design decisions crafted to uphold certain values explicitly. We illustrate the approach with a running example and conclude with a research agenda for advancing value-aware softwareengineering.
There is a rapid emergence of tools, methods, and guidance for the use of AI across all parts of the software development process, from requirements gathering to code generation to testing and user feedback. However, ...
详细信息
ISBN:
(纸本)9783031727801;9783031727818
There is a rapid emergence of tools, methods, and guidance for the use of AI across all parts of the software development process, from requirements gathering to code generation to testing and user feedback. However, AI raises many concerns regarding responsible use, and there is a need to understand and develop principles for what responsible software development entails in practice in an agile context, as well as carefully evaluate the incorporation of AI tools and methods in softwareengineering. We draw on experience from Bespot, Knowit, Schibsted, and Spotify to identify challenges faced by companies pioneering the use of AI in their software development efforts and start charting a roadmap for responsible AI in softwareengineering.
My research explores the adoption of InnerSource, a practice that integrates open source methodologies within organizations to foster collaboration and overcome the traditional silo mentality. InnerSource and Agile im...
详细信息
ISBN:
(纸本)9783031727801;9783031727818
My research explores the adoption of InnerSource, a practice that integrates open source methodologies within organizations to foster collaboration and overcome the traditional silo mentality. InnerSource and Agile implementations share many values such as transparency, employee empowerment, and a flexible response to change. InnerSource adoption can come before, after, or in parallel with Agile transformations. Despite the increasing recognition of InnerSource as a pivotal driver for developer productivity and its growing presence in industry discussions, academic research on the subject remains in its infancy. Leveraging my involvement with the InnerSource Commons community and drawing from Activity Theory, my research aims to fill critical gaps in our understanding of InnerSource adoption. Specifically, it investigates the activities organizations engage in to enable InnerSource, identifies blockers hindering its implementation, and proposes effective strategies to counteract these challenges. At the XP 2024 PhD Symposium, I intend to share some preliminary findings of my research, derived from a Systematic Literature Review and a pilot study with an InnerSource practitioner working group. My research not only seeks to advance theoretical knowledge in the field but also offers practical insights for organizations striving to change software development practices, contributing to a more collaborative and efficient software development environment.
Due to the continuous implementation of the dual carbon strategy, the capacity of new energy grid-connected generation has been increasing year by year, while the capacity of energy storage equipment is also growing s...
详细信息
engineering design course is renowned for its abstraction and complexity, which can have an impact on the quality of classroom instruction. To address this issue, this study has undertaken the design and development o...
详细信息
Because ensembles and swarms occur everywhere in nature, in social and in technical contexts, their modeling and programming is one of the challenges of modern software systems engineering. While it is well-known how ...
详细信息
ISBN:
(纸本)9783031751066;9783031751073
Because ensembles and swarms occur everywhere in nature, in social and in technical contexts, their modeling and programming is one of the challenges of modern software systems engineering. While it is well-known how self-adaptive or autonomic systems can be designed advantageously (Kounev et al., 2017), this often requires the engineering of new software languages with a tremendous development effort. This paper presents a novel context-role-adaptive approach for modeling and programming of ensembles and swarms that relies on a small library in Julia (1300 SLOC), exploiting its facilities for metaprogramming, multiple dispatch, and equational modeling. We demonstrate the validity of the approach with a tutorial on two scenarios from the technical and natural domain in which ensembles are represented by (dynamic) contexts. RailCabs are shuttle-based autonomous trains, self-forming ensembles, represented as contexts that re-group during their travels. Bird swarms show specific formations, represented as contexts to save energy and to prevent attackers. In the latter case study, we show how to model the dynamic behavior of the birds with an equational modeling library in Julia. Therefore, the paper contributes a new library-based approach to Context-Role-oriented Equational Modeling of Ensembles (CREME).
暂无评论