Tue 18 May 2021 17:13 - 17:16 at MSR Room 1 - Hackathon Chair(s): Jim Herbsleb, Audris Mockus, Alexander Nolte
This paper presents results from the MSR 2021 Hackathon. Our team investigates files/projects that contain known security vulnerabilities and how widespread they are throughout repositories in open source software. These security vulnerabilities can potentially be propagated through code reuse even when the vulnerability is fixed in different versions of the code. We utilize the World of Code infrastructure to discover file-level duplication of code from a nearly complete collection of open source software. This paper describes a method and set of tools to find all open source projects that use known vulnerable files and any previous revisions of those files.
Tue 18 MayDisplayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change
Tue 18 May
Displayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change
17:00 - 17:50 | HackathonTechnical Papers / Hackathon at MSR Room 1 Chair(s): Jim Herbsleb Carnegie Mellon University, Audris Mockus The University of Tennessee, Alexander Nolte University of Tartu | ||
17:01 2m | Welcome by the MSR Hackathon Co-Chairs Hackathon Jim Herbsleb Carnegie Mellon University, Audris Mockus The University of Tennessee, Alexander Nolte University of Tartu | ||
17:03 3mTalk | An Exploratory Study of Project Activity Changepoints in Open Source Software Evolution Hackathon | ||
17:06 3mPaper | The Diversity-Innovation Paradox in Open-Source Software Hackathon Mengchen Sam Yong Carnegie Mellon University, Pittsburgh, Pennsylvania, United States, Lavinia Francesca Paganini Federal University of Pernambuco, Huilian Sophie Qiu Carnegie Mellon University, Pittsburgh, Pennsylvania, United States, José Bayoán Santiago Calderón University of Virginia, USA DOI Pre-print | ||
17:09 4mTalk | The Secret Life of Hackathon Code Technical Papers Ahmed Samir Imam Mahmoud University of Tartu, Tapajit Dey Lero - The Irish Software Research Centre and University of Limerick, Alexander Nolte University of Tartu, Audris Mockus The University of Tennessee, Jim Herbsleb Carnegie Mellon University Pre-print | ||
17:13 3mTalk | Tracing Vulnerable Code Lineage Hackathon David Reid University of Tennessee, Kalvin Eng University of Alberta, Chris Bogart Carnegie Mellon University, Adam Tutko University of Tennessee - Knoxville Pre-print | ||
17:16 3mTalk | Building the Collaboration Graph of Open-Source Software Ecosystem Hackathon Pre-print | ||
17:19 1mTalk | The Secret Life of Hackathon Code Hackathon Ahmed Samir Imam Mahmoud University of Tartu, Tapajit Dey Lero - The Irish Software Research Centre and University of Limerick Pre-print | ||
17:20 30mLive Q&A | Discussions and Q&A Technical Papers |
Information for Participants
Tue 18 May 2021 17:00 - 17:50 at MSR Room 1 - Hackathon Chair(s): Jim Herbsleb, Audris Mockus, Alexander Nolte
Info for room MSR Room 1:
Go directly to this room on Clowdr