{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,28]],"date-time":"2026-03-28T02:15:28Z","timestamp":1774664128197,"version":"3.50.1"},"reference-count":59,"publisher":"Springer Science and Business Media LLC","issue":"3","license":[{"start":{"date-parts":[[2025,2,27]],"date-time":"2025-02-27T00:00:00Z","timestamp":1740614400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,2,27]],"date-time":"2025-02-27T00:00:00Z","timestamp":1740614400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"funder":[{"DOI":"10.13039\/501100020951","name":"Fonds de Recherche du Qu\u00e9bec","doi-asserted-by":"crossref","id":[{"id":"10.13039\/501100020951","id-type":"DOI","asserted-by":"crossref"}]},{"DOI":"10.13039\/100007631","name":"Canadian Institute for Advanced Research","doi-asserted-by":"publisher","id":[{"id":"10.13039\/100007631","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100000038","name":"Natural Sciences and Engineering Research Council of Canada","doi-asserted-by":"crossref","id":[{"id":"10.13039\/501100000038","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Empir Software Eng"],"published-print":{"date-parts":[[2025,5]]},"DOI":"10.1007\/s10664-024-10610-0","type":"journal-article","created":{"date-parts":[[2025,2,28]],"date-time":"2025-02-28T10:11:05Z","timestamp":1740737465000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":3,"title":["Assessing the adoption of security policies by developers in terraform across different cloud providers"],"prefix":"10.1007","volume":"30","author":[{"given":"Alexandre","family":"Verdet","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4927-2755","authenticated-orcid":false,"given":"Mohammad","family":"Hamdaqa","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-9086-9038","authenticated-orcid":false,"given":"Leuson Da","family":"Silva","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5704-4173","authenticated-orcid":false,"given":"Foutse","family":"Khomh","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2025,2,27]]},"reference":[{"key":"10610_CR1","doi-asserted-by":"crossref","unstructured":"Amazon Web Services (2022) Aws foundational security best practices standard. Accessed 12-November-2022","DOI":"10.1002\/nba.31230"},{"key":"10610_CR2","unstructured":"Amazon\u00a0Web Services (2023) Aws cloudformation. https:\/\/aws.amazon.com\/fr\/cloudformation\/. Accessed 11-June-2023"},{"key":"10610_CR3","doi-asserted-by":"crossref","unstructured":"Artac M, Borovssak T, Di Nitto E, Guerriero M, Tamburri DA (2017) Devops: introducing infrastructure-as-code. In: 2017 IEEE\/ACM 39th international conference on software engineering companion (ICSE-C). IEEE, pp 497\u2013498","DOI":"10.1109\/ICSE-C.2017.162"},{"key":"10610_CR4","doi-asserted-by":"publisher","unstructured":"\u00c1vila R, Khoury R, Khoury R, Petrillo F (2021) Use of security logs for data leak detection: a systematic literature review. Secur Commun Netw 2021:612\u2013622. https:\/\/doi.org\/10.1155\/2021\/6615899. ISSN 1939-0114","DOI":"10.1155\/2021\/6615899"},{"key":"10610_CR5","unstructured":"AWS (2023) Amazon s3 beginning to apply two security best practices to all new buckets by default. https:\/\/aws.amazon.com\/fr\/about-aws\/whats-new\/2023\/04\/amazon-s3-two-security-best-practices-buckets-default\/. Accessed 13-April-2023"},{"key":"10610_CR6","doi-asserted-by":"crossref","unstructured":"Begoug M, Chouchen M, Ouni A (2024a) Terrametrics: An open source tool for infrastructure-as-code (IaC) quality metrics in terraform. In: Proceedings of the 32nd IEEE\/ACM international conference on program comprehension pp 450\u2013454","DOI":"10.1145\/3643916.3644439"},{"key":"10610_CR7","doi-asserted-by":"crossref","unstructured":"Begoug M, Chouchen M, Ouni A, Abdullah Alomar E, Mkaouer MW (2024b) Fine-grained just-in-time defect prediction at the block level in infrastructure-as-code (IaC). In: 2024 IEEE\/ACM 21st international conference on mining software repositories (MSR). IEEE, pp 100\u2013112","DOI":"10.1145\/3643991.3644934"},{"key":"10610_CR8","unstructured":"Bridgecrew. Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with checkov by bridgecrew., 2022. URL https:\/\/github.com\/bridgecrewio\/checkov. Accessed 12 November 2022"},{"key":"10610_CR9","unstructured":"California State Assembly (2018) California Consumer Privacy Act (CCPA). https:\/\/oag.ca.gov\/privacy\/ccpa"},{"key":"10610_CR10","unstructured":"Center for Internet Security (2021) Cis amazon web services benchmarks version 1.4.0. https:\/\/www.cisecurity.org\/benchmark\/amazon_web_services. Accessed 12-November-2022"},{"key":"10610_CR11","unstructured":"Center for Internet Security (2023a) Cis microsoft azure foundations benchmark v2.0.0. https:\/\/www.cisecurity.org\/benchmark\/azure. Accessed 23-March-2022"},{"key":"10610_CR12","unstructured":"Center for Internet Security (2023b) Cis google cloud platform foundation benchmark v1.3.0. https:\/\/www.cisecurity.org\/benchmark\/google_cloud_computing_platform. Accessed 30-April-2022"},{"issue":"3","key":"10610_CR13","doi-asserted-by":"publisher","first-page":"372","DOI":"10.1109\/TCC.2016.2582278","volume":"5","author":"KK Choo","year":"2017","unstructured":"Choo KK, Rana OF, Rajarajan M (2017) Cloud security engineering: theory, practice and future research. IEEE Trans Cloud Comput 5(3):372\u2013374. https:\/\/doi.org\/10.1109\/TCC.2016.2582278","journal-title":"IEEE Trans Cloud Comput"},{"key":"10610_CR14","doi-asserted-by":"crossref","unstructured":"Cohen J (1960) A coefficient of agreement for nominal scales. In: Educational and psychological measurement, vol 20, no 1, pp 37-46. Sage Publications","DOI":"10.1177\/001316446002000104"},{"key":"10610_CR15","doi-asserted-by":"publisher","unstructured":"Das A, Uddin G, Ruhe G (2022) An empirical study of blockchain repositories in github. In: Proceedings of the international conference on evaluation and assessment in software engineering 2022, EASE \u201922, pp 211-220, New York, NY, USA. Association for Computing Machinery. https:\/\/doi.org\/10.1145\/3530019.3530041. ISBN 9781450396134","DOI":"10.1145\/3530019.3530041"},{"issue":"3","key":"10610_CR16","doi-asserted-by":"publisher","first-page":"94","DOI":"10.1109\/MS.2016.68","volume":"33","author":"C Ebert","year":"2016","unstructured":"Ebert C, Gallardo G, Hernantes J, Serrano N (2016) Devops. IEEE Softw 33(3):94\u2013100","journal-title":"IEEE Softw"},{"key":"10610_CR17","unstructured":"European Commission (2016) General data protection regulation (GDPR). https:\/\/gdpr-info.eu\/"},{"key":"10610_CR18","unstructured":"GitHub (2022a) About secret scanning. https:\/\/docs.github.com\/en\/code-security\/secret-scanning\/about-secret-scanning. Accessed 12-November-2022"},{"key":"10610_CR19","unstructured":"GitHub (2022b) Search code. https:\/\/docs.github.com\/fr\/rest\/search?apiVersion=2022-11-28#search-code. Accessed 13-March-2023"},{"key":"10610_CR20","doi-asserted-by":"publisher","unstructured":"Gonzalez D, Zimmermann T, Nagappan N (2020) The state of the ml-universe: 10 years of artificial intelligence & machine learning software development on github. In: 2020 Proceedings of the 17th International Conference on Mining Software Repositories, MSR \u201920. Association for Computing Machinery, pp 431-442. https:\/\/doi.org\/10.1145\/3379597.3387473","DOI":"10.1145\/3379597.3387473"},{"key":"10610_CR21","unstructured":"Google (2022a) Default encryption at rest. https:\/\/cloud.google.com\/docs\/security\/encryption\/default-encryption. Accessed 5-May-2023"},{"key":"10610_CR22","unstructured":"Google (2022b) Encryption in transit. https:\/\/cloud.google.com\/docs\/security\/encryption-in-transit. Accessed 5-May-2023"},{"key":"10610_CR23","doi-asserted-by":"publisher","unstructured":"Gousios G (2013) The ghtorent dataset and tool suite. In: 2013 10th Working conference on mining software repositories (MSR), pp 233\u2013236. https:\/\/doi.org\/10.1109\/MSR.2013.6624034","DOI":"10.1109\/MSR.2013.6624034"},{"key":"10610_CR24","doi-asserted-by":"publisher","unstructured":"Gousios G, Spinellis D (2017) Mining software engineering data from github. In: 2017 IEEE\/ACM 39th international conference on software engineering companion (ICSE-C), pp 501\u2013502. https:\/\/doi.org\/10.1109\/ICSE-C.2017.164","DOI":"10.1109\/ICSE-C.2017.164"},{"key":"10610_CR25","doi-asserted-by":"publisher","unstructured":"Guerriero M, Garriga M, Tamburri DA, Palomba F (2019) Adoption, support, and challenges of infrastructure-as-code: Insights from industry. In: 2019 IEEE international conference on software maintenance and evolution (ICSME), pp 580\u2013589. https:\/\/doi.org\/10.1109\/ICSME.2019.00092","DOI":"10.1109\/ICSME.2019.00092"},{"key":"10610_CR26","unstructured":"HashiCorp (2022) Terraform. https:\/\/www.terraform.io\/. Accessed 12-November-2022"},{"key":"10610_CR27","unstructured":"Humble J, Farley D (2010) Continuous delivery: reliable software releases through build, test, and deployment automation. Pearson Education"},{"key":"10610_CR28","doi-asserted-by":"publisher","unstructured":"Jiang Y, Adams B (2015) Co-evolution of infrastructure and source code - an empirical study. In: 2015 IEEE\/ACM 12th working conference on mining software repositories, pp 45\u201355. https:\/\/doi.org\/10.1109\/MSR.2015.12","DOI":"10.1109\/MSR.2015.12"},{"key":"10610_CR29","doi-asserted-by":"publisher","unstructured":"Juve G, Deelman E (2011) Automating application deployment in infrastructure clouds. In: 2011 IEEE third international conference on cloud computing technology and science, pp 658\u2013665. https:\/\/doi.org\/10.1109\/CloudCom.2011.102","DOI":"10.1109\/CloudCom.2011.102"},{"key":"10610_CR30","doi-asserted-by":"publisher","unstructured":"Kemp R (2018) Legal aspects of cloud security. Comput Law Secur Rev 34(4):928\u2013932. https:\/\/doi.org\/10.1016\/j.clsr.2018.06.001https:\/\/www.sciencedirect.com\/science\/article\/pii\/S0267364918302358. ISSN 0267-3649","DOI":"10.1016\/j.clsr.2018.06.001"},{"key":"10610_CR31","unstructured":"Lin F, Kim DJ et al (2024) When LLM-based Code Generation Meets the Software Development Process. arXiv:2403.15852"},{"key":"10610_CR32","unstructured":"Microsoft Azure (2023) Azure resource manager. https:\/\/azure.microsoft.com\/en-us\/get-started\/azure-portal\/resource-manager\/. Accessed 11-June-2023"},{"key":"10610_CR33","unstructured":"Morris K (2020) Infrastructure as code. O\u2019Reilly Media"},{"key":"10610_CR34","unstructured":"Nayak R (2019) When to use which infrastructure-as-code tool. https:\/\/medium.com\/cloudnativeinfra\/when-to-use-which-infrastructure-as-code-tool-665af289fbde. Accessed 12-November-2022"},{"key":"10610_CR35","doi-asserted-by":"crossref","unstructured":"Ntentos E, Zdun U, Falazi G, Breitenb\u00fccher U, Leymann F (2023) Detecting and resolving coupling-related infrastructure as code based architecture smells in microservice deployments. In: 2023 IEEE 16th international conference on cloud computing (CLOUD). IEEE, pp 201\u2013211","DOI":"10.1109\/CLOUD60044.2023.00031"},{"key":"10610_CR36","unstructured":"Office of the Privacy Commissioner of Canada (2000) The personal information protection and electronic documents act (PIPEDA). https:\/\/www.priv.gc.ca\/en\/privacy-topics\/privacy-laws-in-canada\/the-personal-information-protection-and-electronic-documents-act-pipeda\/"},{"key":"10610_CR37","doi-asserted-by":"crossref","unstructured":"Opdebeeck R, Zerouali A, De Roover C (2023) Control and data flow in security smell detection for infrastructure as code: Is it worth the effort?. In: 2023 IEEE\/ACM 20th international conference on mining software repositories (MSR). IEEE, pp 534\u2013545","DOI":"10.1109\/MSR59073.2023.00079"},{"key":"10610_CR38","doi-asserted-by":"publisher","unstructured":"osif AC, Gasiba TE, Zhao T, Lechner U, Pinto-Albuquerque M (2022) A large-scale study on the security vulnerabilities of cloud deployments. In: Ubiquitous security: first international conference, UbiSec 2021, Guangzhou, China, December 28\u201331, 2021, Revised Selected Papers. Springer, pp 171\u2013188. https:\/\/doi.org\/10.1007\/978-981-19-0468-4_13","DOI":"10.1007\/978-981-19-0468-4_13"},{"key":"10610_CR39","doi-asserted-by":"publisher","first-page":"65","DOI":"10.1016\/j.infsof.2018.12.004","volume":"108","author":"A Rahman","year":"2019","unstructured":"Rahman A, Mahdavi-Hezaveh R, Williams L (2019) A systematic mapping study of infrastructure as code research. Inf Softw Technol 108:65\u201377","journal-title":"Inf Softw Technol"},{"key":"10610_CR40","doi-asserted-by":"publisher","unstructured":"Rahman A, Mahdavi-Hezaveh R, Williams L (2019) A systematic mapping study of infrastructure as code research. Inf Softw Technol 108:65\u201377. https:\/\/doi.org\/10.1016\/j.infsof.2018.12.004https:\/\/www.sciencedirect.com\/science\/article\/pii\/S0950584918302507. ISSN 0950-5849","DOI":"10.1016\/j.infsof.2018.12.004"},{"key":"10610_CR41","doi-asserted-by":"publisher","unstructured":"Rahman A, Parnin C, Williams L (2019c) The seven sins: Security smells in infrastructure as code scripts. In: 2019 IEEE\/ACM 41st international conference on software engineering (ICSE), pp 164\u2013175. https:\/\/doi.org\/10.1109\/ICSE.2019.00033","DOI":"10.1109\/ICSE.2019.00033"},{"key":"10610_CR42","doi-asserted-by":"publisher","unstructured":"Rahman A, Williams L (2018) Characterizing defective configuration scripts used for continuous deployment. In: 2018 IEEE 11th international conference on software testing, verification and validation (ICST), pp 34\u201345. https:\/\/doi.org\/10.1109\/ICST.2018.00014","DOI":"10.1109\/ICST.2018.00014"},{"key":"10610_CR43","unstructured":"Richter F (2022) Infographic: Amazon leads \\$200-billion cloud market. https:\/\/www.statista.com\/chart\/18819\/worldwide-market-share-of-leading-cloud-infrastructure-service-providers\/. Accessed 12-November-2022"},{"issue":"6","key":"10610_CR44","doi-asserted-by":"publisher","first-page":"68","DOI":"10.1109\/MSP.2013.132","volume":"12","author":"J Ryoo","year":"2014","unstructured":"Ryoo J, Rizvi S, Aiken W, Kissell J (2014) Cloud security auditing: challenges and emerging approaches. IEEE Secur Privacy 12(6):68\u201374. https:\/\/doi.org\/10.1109\/MSP.2013.132","journal-title":"IEEE Secur Privacy"},{"key":"10610_CR45","doi-asserted-by":"crossref","unstructured":"Saavedra N, Ferreira JF (2022) Glitch: automated polyglot security smell detection in infrastructure as code. In: Proceedings of the 37th IEEE\/ACM international conference on automated software engineering, pp 1\u201312","DOI":"10.1145\/3551349.3556945"},{"key":"10610_CR46","doi-asserted-by":"crossref","unstructured":"Saavedra N, Gon\u00e7alves J, Henriques M, Ferreira JF, Mendes A (2023) Polyglot code smell detection for infrastructure as code with glitch. In: 2023 38th IEEE\/ACM international conference on automated software engineering (ASE). IEEE, pp 2042\u20132045","DOI":"10.1109\/ASE56229.2023.00162"},{"key":"10610_CR47","doi-asserted-by":"publisher","unstructured":"Saraswat M, Tripathi RC (2020) Cloud computing: Comparison and analysis of cloud service providers-aws, microsoft and google. In: 2020 9th International conference system modeling and advancement in research trends (SMART), pp 281\u2013285. https:\/\/doi.org\/10.1109\/SMART50582.2020.9337100","DOI":"10.1109\/SMART50582.2020.9337100"},{"key":"10610_CR48","doi-asserted-by":"publisher","unstructured":"Schwarz J, Steffens A, Lichter H (2018) Code smells in infrastructure as code. In: 2018 11th International conference on the quality of information and communications technology (QUATIC), pp 220\u2013228. https:\/\/doi.org\/10.1109\/QUATIC.2018.00040","DOI":"10.1109\/QUATIC.2018.00040"},{"key":"10610_CR49","unstructured":"Semgrep (2023) Semgrep: code analysis at ludicrous speed. https:\/\/semgrep.dev\/. Accessed 13-March-2023"},{"key":"10610_CR50","doi-asserted-by":"publisher","unstructured":"Sengupta S, Kaulgud V, Sharma VS (2011) Cloud computing security\u2013trends and research directions. In 2011 IEEE world congress on services, pp 524\u2013531. https:\/\/doi.org\/10.1109\/SERVICES.2011.20","DOI":"10.1109\/SERVICES.2011.20"},{"key":"10610_CR51","doi-asserted-by":"publisher","unstructured":"Sharma T, Fragkoulis M, Spinellis D (2016) Does your configuration code smell? In: 2016 IEEE\/ACM 13th working conference on mining software repositories (MSR), pp 189\u2013200. https:\/\/doi.org\/10.1145\/2901739.2901761","DOI":"10.1145\/2901739.2901761"},{"issue":"4","key":"10610_CR52","doi-asserted-by":"publisher","first-page":"86","DOI":"10.1109\/MS.2012.85","volume":"29","author":"D Spinellis","year":"2012","unstructured":"Spinellis D (2012) Don\u2019t install software by hand. IEEE Softw 29(4):86\u201387. https:\/\/doi.org\/10.1109\/MS.2012.85","journal-title":"IEEE Softw"},{"key":"10610_CR53","unstructured":"Stultiens R (2020) Compliant but vulnerable: fixing gaps in existing aws security frameworks"},{"key":"10610_CR54","unstructured":"Terrascan (2023) Detect compliance and security violations across infrastructure as code (iac) to mitigate risk before provisioning cloud native infrastructure. https:\/\/runterrascan.io\/. Accessed 13-March-2023"},{"key":"10610_CR55","unstructured":"Tfsec (2023) tfsec uses static analysis of your terraform code to spot potential misconfigurations.https:\/\/github.com\/aquasecurity\/tfsec. Accessed 13-March-2023"},{"key":"10610_CR56","doi-asserted-by":"crossref","unstructured":"Ur\u00a0Rahman AA, Williams L (2016) Security practices in devops. In: Proceedings of the symposium and bootcamp on the science of security, pp 109\u2013111","DOI":"10.1145\/2898375.2898383"},{"key":"10610_CR57","doi-asserted-by":"publisher","unstructured":"Vaarandi R, Pihelgas M (2014) Using security logs for collecting and reporting technical security metrics. In: 2014 IEEE military communications conference, pp 294\u2013299. https:\/\/doi.org\/10.1109\/MILCOM.2014.53","DOI":"10.1109\/MILCOM.2014.53"},{"key":"10610_CR58","doi-asserted-by":"publisher","unstructured":"van\u00a0der Bent E, Hage J, Visser J, Gousios G (2018) How good is your puppet? an empirically defined and validated quality model for puppet. In: 2018 IEEE 25th international conference on software analysis, evolution and reengineering (SANER), pp 164\u2013174. https:\/\/doi.org\/10.1109\/SANER.2018.8330206","DOI":"10.1109\/SANER.2018.8330206"},{"key":"10610_CR59","unstructured":"Verdet A, Hamdaqa M, Da\u00a0Silva L, Khomh F (2023) Exploring security practices in infrastructure as code: An empirical study - replication package. https:\/\/github.com\/averdet\/master-terraform-sec-adoption"}],"updated-by":[{"DOI":"10.1007\/s10664-025-10667-5","type":"correction","label":"Correction","source":"publisher","updated":{"date-parts":[[2025,9,24]],"date-time":"2025-09-24T00:00:00Z","timestamp":1758672000000}}],"container-title":["Empirical Software Engineering"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10664-024-10610-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s10664-024-10610-0\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s10664-024-10610-0.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,11,20]],"date-time":"2025-11-20T13:28:52Z","timestamp":1763645332000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s10664-024-10610-0"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,2,27]]},"references-count":59,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2025,5]]}},"alternative-id":["10610"],"URL":"https:\/\/doi.org\/10.1007\/s10664-024-10610-0","relation":{},"ISSN":["1382-3256","1573-7616"],"issn-type":[{"value":"1382-3256","type":"print"},{"value":"1573-7616","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,2,27]]},"assertion":[{"value":"29 December 2024","order":1,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"27 February 2025","order":2,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"24 September 2025","order":4,"name":"change_date","label":"Change Date","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"Correction","order":5,"name":"change_type","label":"Change Type","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"A Correction to this paper has been published:","order":6,"name":"change_details","label":"Change Details","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"https:\/\/doi.org\/10.1007\/s10664-025-10667-5","URL":"https:\/\/doi.org\/10.1007\/s10664-025-10667-5","order":7,"name":"change_details","label":"Change Details","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare that they have no known competing financial interests or personal relationships that could have appeared to influence the work reported in this paper.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflicts of Interest"}}],"article-number":"74"}}