2023 38th IEEE/ACM International Conference on Automated Software Engineering (ASE) 2023
DOI: 10.1109/ase56229.2023.00058
|View full text |Cite
|
Sign up to set email alerts
|

Mitigating Persistence of Open-Source Vulnerabilities in Maven Ecosystem

Lyuye Zhang,
Chengwei Liu,
Sen Chen
et al.
Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
1

Citation Types

0
1
0

Year Published

2023
2023
2024
2024

Publication Types

Select...
4
1

Relationship

0
5

Authors

Journals

citations
Cited by 6 publications
(1 citation statement)
references
References 24 publications
0
1
0
Order By: Relevance
“…Alfadel et al [26] analyzed security vulnerabilities in the PyPI ecosystem and found over 50% were patched after public disclosure. Zhang et al [51,53] analyzed the persistent vulnerabilities in the Maven ecosystem and proposed Ranger to restore secure version ranges against the vulnerabilities. Wu et al [48] studied the reachability of Maven vulnerabilities and found 73% of vulnerabilities are not reachable and safe for downstream users.…”
Section: Related Workmentioning
confidence: 99%
“…Alfadel et al [26] analyzed security vulnerabilities in the PyPI ecosystem and found over 50% were patched after public disclosure. Zhang et al [51,53] analyzed the persistent vulnerabilities in the Maven ecosystem and proposed Ranger to restore secure version ranges against the vulnerabilities. Wu et al [48] studied the reachability of Maven vulnerabilities and found 73% of vulnerabilities are not reachable and safe for downstream users.…”
Section: Related Workmentioning
confidence: 99%