Demystifying the vulnerability propagation and its evolution via dependency trees in the npm ecosystem
Third-party libraries with rich functionalities facilitate the fast development of JavaScript
software, leading to the explosive growth of the NPM ecosystem. However, it also brings …
software, leading to the explosive growth of the NPM ecosystem. However, it also brings …
Modular call graph construction for security scanning of node. js applications
Most of the code in typical Node. js applications comes from third-party libraries that consist
of a large number of interdependent modules. Because of the dynamic features of …
of a large number of interdependent modules. Because of the dynamic features of …
Software supply chain: review of attacks, risk assessment strategies and security controls
The software product is a source of cyber-attacks that target organizations by using their
software supply chain as a distribution vector. As the reliance of software projects on open …
software supply chain as a distribution vector. As the reliance of software projects on open …
The Role of the Oxidative State and Innate Immunity Mediated by TLR7 and TLR9 in Lupus Nephritis
R Echavarria, EG Cardona-Muñoz… - International Journal of …, 2023 - mdpi.com
Lupus nephritis (LN) is a severe complication of systemic lupus erythematosus (SLE) and is
considered one of the leading causes of mortality. Multiple immunological pathways are …
considered one of the leading causes of mortality. Multiple immunological pathways are …
Maltracker: A fine-grained npm malware tracker copiloted by llm-enhanced dataset
Z Yu, M Wen, X Guo, H Jin - Proceedings of the 33rd ACM SIGSOFT …, 2024 - dl.acm.org
As the largest package registry, Node Package Manager (NPM) has become the prime
target for various supply chain attacks recently and has been flooded with numerous …
target for various supply chain attacks recently and has been flooded with numerous …
Understanding the impact of APIs behavioral breaking changes on client applications
Libraries play a significant role in software development as they provide reusable
functionality, which helps expedite the development process. As libraries evolve, they …
functionality, which helps expedite the development process. As libraries evolve, they …
Putting the semantics into semantic versioning
The long-standing aspiration for software reuse has made astonishing strides in the past few
years. Many modern software development ecosystems now come with rich sets of publicly …
years. Many modern software development ecosystems now come with rich sets of publicly …
Nessie: Automatically testing javascript apis with asynchronous callbacks
Previous algorithms for feedback-directed unit test generation iteratively create sequences
of API calls by executing partial tests and by adding new API calls at the end of the test …
of API calls by executing partial tests and by adding new API calls at the end of the test …
Understanding Breaking Changes in the Wild
Modern software applications rely heavily on the usage of libraries, which provide reusable
functionality, to accelerate the development process. As libraries evolve and release new …
functionality, to accelerate the development process. As libraries evolve and release new …
I depended on you and you broke me: An empirical study of manifesting breaking changes in client packages
Complex software systems have a network of dependencies. Developers often configure
package managers (eg, npm) to automatically update dependencies with each publication …
package managers (eg, npm) to automatically update dependencies with each publication …