all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Trusting code in the wild: A social network-based centrality rating for developers in the Rust ecosystem. (arXiv:2306.00240v1 [cs.SE])

Add to bookmarks
June 2, 2023, 1:10 a.m. | Nasif Imtiaz, Preya Shabrina, Laurie Williams

cs.CR updates on arXiv.org arxiv.org

As modern software extensively uses open source packages, developers
regularly pull in new upstream code through frequent updates. While a manual
review of all upstream changes may not be practical, developers may rely on the
authors' and reviewers' identities, among other factors, to decide what level
of review the new code may require. The goal of this study is to help
downstream project developers prioritize review efforts for upstream code by
providing a social network-based centrality rating for the authors …

authors code developers ecosystem identities may network open source open source packages packages review rust social social network software updates upstream

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

Quantum $X$-Secure $B$-Byzantine $T$-Colluding Private Information Retrieval 19 hours ago | arxiv.org
arxiv capabilities context cs.cr +13
Approximation of Pufferfish Privacy for Gaussian Priors 19 hours ago | arxiv.org
adversary arxiv cs.cr cs.it +9
Polynomial XL: A Variant of the XL Algorithm Using Macaulay Matrices over Polynomial Rings 19 hours ago | arxiv.org
algorithm arxiv computer computer science +11
Families of sequences with good family complexity and cross-correlation measure 19 hours ago | arxiv.org
alphabet arxiv binary complexity +12
Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation 19 hours ago | arxiv.org
access arxiv attack breaking +26
Seeing Is Not Always Believing: Invisible Collision Attack and Defence on Pre-Trained Models 19 hours ago | arxiv.org
arxiv attack bert big +14
Proceedings of the 2nd International Workshop on Adaptive Cyber Defense 19 hours ago | arxiv.org
applications artificial artificial intelligence arxiv +16
Sharpness-Aware Data Poisoning Attack 19 hours ago | arxiv.org
aim arxiv attack attacks +18
Fant\^omas: Understanding Face Anonymization Reversibility 19 hours ago | arxiv.org
anonymization arxiv can claims +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Engineer

@ Celonis | Munich, Germany
View on infosec-jobs.com

Security Engineer, Cloud Threat Intelligence

@ Google | Reston, VA, USA; Kirkland, WA, USA
View on infosec-jobs.com

IT Security Analyst*

@ EDAG Group | Fulda, Hessen, DE, 36037
View on infosec-jobs.com

Scrum Master/ Agile Project Manager for Information Security (Temporary)

@ Guidehouse | Lagunilla de Heredia
View on infosec-jobs.com

Waste Incident Responder (Tanker Driver)

@ Severn Trent | Derby , England, GB
View on infosec-jobs.com

Risk Vulnerability Analyst w/Clearance - Colorado

@ Rothe | Colorado Springs, CO, United States
View on infosec-jobs.com
View more jobs