{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,23]],"date-time":"2025-05-23T04:10:40Z","timestamp":1747973440418,"version":"3.41.0"},"reference-count":27,"publisher":"Springer Science and Business Media LLC","issue":"1","license":[{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,3,1]],"date-time":"2025-03-01T00:00:00Z","timestamp":1740787200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Software Qual J"],"published-print":{"date-parts":[[2025,3]]},"DOI":"10.1007\/s11219-025-09715-6","type":"journal-article","created":{"date-parts":[[2025,3,14]],"date-time":"2025-03-14T03:44:36Z","timestamp":1741923876000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Predicting Vulnerabilities in Computer Source Code Using Non-Investigated Software Metrics"],"prefix":"10.1007","volume":"33","author":[{"given":"Francis Kwadzo","family":"Agbenyegah","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jinfu","family":"Chen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Micheal","family":"Asante","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Ernest","family":"Akpaku","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2025,3,14]]},"reference":[{"key":"9715_CR1","doi-asserted-by":"crossref","unstructured":"Alshammari, B., & Colin, F. (2009). Security metrics for object oriented class design. Proceedings of the 9th International Conference on Quality Software, 11\u201320.","DOI":"10.1109\/QSIC.2009.11"},{"issue":"3","key":"9715_CR2","doi-asserted-by":"publisher","first-page":"294","DOI":"10.1016\/j.sysarc.2010.06.003","volume":"57","author":"I Chowdhury","year":"2011","unstructured":"Chowdhury, I., & Zulkernine, M. (2011). Using complexity, coupling, and cohesion metrics as early indicators of vulnerabilities. Journal of Systems Architecture, 57(3), 294\u2013313. https:\/\/doi.org\/10.1016\/j.sysarc.2010.06.003","journal-title":"Journal of Systems Architecture"},{"key":"9715_CR3","doi-asserted-by":"publisher","unstructured":"Clemente, C. J. (2018). Is Predicting Software Security Bugs using Deep Learning Better than the Traditional Machine Learning Algorithms\u202f? https:\/\/doi.org\/10.1109\/QRS.2018.00023","DOI":"10.1109\/QRS.2018.00023"},{"key":"9715_CR4","unstructured":"Davis, C., & White, E. (2023). Transfer Learning for Cross-Project Software Vulnerability Prediction. Proceedings of the IEEE\/ACM International Conference on Automated Software Engineering (ASE)."},{"key":"9715_CR5","unstructured":"Doe, J., & Smith, J. (2023). Deep Learning-Based Vulnerability Prediction in Software Systems. Proceedings of the International Conference on Software Engineering (ICSE)."},{"key":"9715_CR6","unstructured":"Fenton, N. E., & Pfleeger, S. L. (1997). Software Metrics: A Rigorous and Practical Approach. PWS Publishing Co."},{"key":"9715_CR7","doi-asserted-by":"publisher","unstructured":"Garg, A., Degiovanni, R., Jimenez, M., Cordy, M., Papadakis, M., & Le Traon, Y. (2022). Learning from what we know: How to perform vulnerability prediction using noisy historical data. Empirical Software Engineering, 27(7). https:\/\/doi.org\/10.1007\/s10664-022-10197-4","DOI":"10.1007\/s10664-022-10197-4"},{"key":"9715_CR8","unstructured":"Harris, G., & Taylor, H. (2023). A Comparative Study of Machine Learning Models for Software Vulnerability Prediction. Proceedings of the International Conference on Predictive Models and Data Analytics in Software Engineering (PROMISE)."},{"key":"9715_CR9","doi-asserted-by":"crossref","unstructured":"Ilias, Kalouptsoglou Miltiadis, S., Dionysios, K., Alexandros, C., Ampatzoglou, & Apostolos. (2022). Examining the Capacity of Text Mining and Software Metrics in Vulnerability Prediction. MDPI, Entropy, 24(651).","DOI":"10.3390\/e24050651"},{"key":"9715_CR10","unstructured":"Jaquith. (2007). Security Metrics: Replacing Fear, Uncertainty, and Doubt, Pearson Education Inc."},{"key":"9715_CR11","unstructured":"Johnson, A., & Brown, B. (2023). Leveraging Graph Neural Networks for Software Vulnerability Detection. Proceedings of the ACM SIGSOFT International Symposium on Foundations of Software Engineering (FSE)."},{"key":"9715_CR12","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-58811-3","author":"IBMS Kalouptsoglou","year":"2020","unstructured":"Kalouptsoglou, I. B. M. S., & Tsoukalas, D. (2020). Cross-Project Vulnerability Prediction Based on Software Metrics and Deep. Springer International Publishing. https:\/\/doi.org\/10.1007\/978-3-030-58811-3","journal-title":"Springer International Publishing"},{"key":"9715_CR13","unstructured":"Lee, D., & Green, F. (2023). Explainable AI for Software Vulnerability Prediction. Proceedings of the European Software Engineering Conference and Symposium on the Foundations of Software Engineering (ESEC\/FSE)."},{"key":"9715_CR14","doi-asserted-by":"publisher","unstructured":"Li, J., Chen, J., Huang, M., Zhou, M., Zhang, L., & Xie, W. (2017). An integration testing platform for software vulnerability detection method. Proceedings - 16th IEEE International Conference on Trust, Security and Privacy in Computing and Communications, 11th IEEE International Conference on Big Data Science and Engineering and 14th IEEE International Conference on Embedded Software and Systems, 1, 984\u2013989. https:\/\/doi.org\/10.1109\/Trustcom\/BigDataSE\/ICESS.2017.341","DOI":"10.1109\/Trustcom\/BigDataSE\/ICESS.2017.341"},{"key":"9715_CR15","doi-asserted-by":"publisher","unstructured":"Li, Z., Zou, D., Xu, S., Ou, X., Jin, H., Wang, S., Deng, Z., & Zhong, Y. (2018a). VulDeePecker: A Deep Learning-Based System for Vulnerability Detection. February. https:\/\/doi.org\/10.14722\/ndss.2018.23158","DOI":"10.14722\/ndss.2018.23158"},{"key":"9715_CR16","doi-asserted-by":"crossref","unstructured":"Li, Z., Zou, D., Xu, S., Ou, X., Jin, H., Wang, S., Deng, Z., & Zhong, Y. (2018b). Vuldeepecker: A deep learning-based system for vulnerability detection.","DOI":"10.14722\/ndss.2018.23158"},{"key":"9715_CR17","doi-asserted-by":"publisher","first-page":"103184","DOI":"10.1109\/ACCESS.2019.2930578","volume":"7","author":"Z Li","year":"2019","unstructured":"Li, Z., Zou, D., Tang, J., Zhang, Z., Sun, M., & Jin, H. (2019). A comparative study of deep learning-based vulnerability detection system. IEEE Access, 7, 103184\u2013103197. https:\/\/doi.org\/10.1109\/ACCESS.2019.2930578","journal-title":"IEEE Access"},{"issue":"2","key":"9715_CR18","doi-asserted-by":"publisher","first-page":"1397","DOI":"10.1109\/COMST.2018.2800740","volume":"20","author":"L Liu","year":"2018","unstructured":"Liu, L., De Vel, O., Han, Q.-L., Zhang, J., & Xiang, Y. (2018). Detecting and preventing cyber insider threats: A survey. Ieee Communication Survey and Tutorial, 20(2), 1397\u20131417.","journal-title":"Ieee Communication Survey and Tutorial"},{"key":"9715_CR19","unstructured":"Seacord, R. (2005). Secure coding in C and C++ (1st ed.). Addison Wesley Professional."},{"key":"9715_CR20","doi-asserted-by":"crossref","unstructured":"Shamal, P. K., Rahamathulla, K., & Akbar, A. (2017). A Study on Software Vulnerability Prediction Model. 703\u2013706.","DOI":"10.1109\/WiSPNET.2017.8299852"},{"issue":"6","key":"9715_CR21","doi-asserted-by":"publisher","first-page":"772","DOI":"10.1109\/TSE.2010.81","volume":"37","author":"Y Shin","year":"2011","unstructured":"Shin, Y., Meneely, A., Williams, L., & Osborne, J. A. (2011). Evaluating complexity, code churn, and developer activity metrics as indicators of software vulnerabilities. IEEE Transactions on Software Engineering, 37(6), 772\u2013787. https:\/\/doi.org\/10.1109\/TSE.2010.81","journal-title":"IEEE Transactions on Software Engineering"},{"key":"9715_CR22","doi-asserted-by":"publisher","unstructured":"Siavvas, M., Kehagias, D., & Tzovaras, D. (2017). A preliminary study on the relationship among software metrics and specific vulnerability types. 916\u2013921. https:\/\/doi.org\/10.1109\/CSCI.2017.159","DOI":"10.1109\/CSCI.2017.159"},{"key":"9715_CR23","doi-asserted-by":"crossref","unstructured":"Votipka, D., Stevens, R., Redmiles, E., Hu, J., & Mazurek, M. (2018). Hackers Vs Testers: a comparison of software vulnerability discovery processes. Proceedings of the 2018 IEEE Symposium on Security and Privacy, 374\u2013391.","DOI":"10.1109\/SP.2018.00003"},{"key":"9715_CR24","doi-asserted-by":"publisher","unstructured":"Walden, J., Stuckman, J., & Scandariato, R. (2014). Predicting vulnerable components: Software metrics vs text mining. Proceedings - International Symposium on Software Reliability Engineering, ISSRE, 23\u201333. https:\/\/doi.org\/10.1109\/ISSRE.2014.32","DOI":"10.1109\/ISSRE.2014.32"},{"key":"9715_CR25","doi-asserted-by":"publisher","unstructured":"Williams, B. J. (2018). A Comparison of Nano-patterns Vs . Software Metrics in Vulnerability Prediction. 355\u2013364. https:\/\/doi.org\/10.1109\/APSEC.2018.00050","DOI":"10.1109\/APSEC.2018.00050"},{"key":"9715_CR26","doi-asserted-by":"publisher","unstructured":"Yun, Z., David, L., Xin, X., Bowen, X., Jianling, S., & Shanping, L. (2015). Combining Software Metrics and Text Features for Vulnerable File Prediction. 20th International Conference on Engineering of Complex Computer Systems. https:\/\/doi.org\/10.1109\/ICECCS.2015.15","DOI":"10.1109\/ICECCS.2015.15"},{"key":"9715_CR27","doi-asserted-by":"publisher","first-page":"74562","DOI":"10.1109\/ACCESS.2020.2988557","volume":"8","author":"M Zagane","year":"2020","unstructured":"Zagane, M., Abdi, M. K., & Alenezi, M. (2020). Deep Learning for Software Vulnerabilities Detection Using Code Metrics. IEEE Access, 8, 74562\u201374570. https:\/\/doi.org\/10.1109\/ACCESS.2020.2988557","journal-title":"IEEE Access"}],"container-title":["Software Quality Journal"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11219-025-09715-6.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s11219-025-09715-6\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11219-025-09715-6.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,5,22]],"date-time":"2025-05-22T11:18:28Z","timestamp":1747912708000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s11219-025-09715-6"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,3]]},"references-count":27,"journal-issue":{"issue":"1","published-print":{"date-parts":[[2025,3]]}},"alternative-id":["9715"],"URL":"https:\/\/doi.org\/10.1007\/s11219-025-09715-6","relation":{},"ISSN":["0963-9314","1573-1367"],"issn-type":[{"type":"print","value":"0963-9314"},{"type":"electronic","value":"1573-1367"}],"subject":[],"published":{"date-parts":[[2025,3]]},"assertion":[{"value":"24 February 2025","order":1,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"14 March 2025","order":2,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"24 May 2025","order":3,"name":"change_date","label":"Change Date","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"Update","order":4,"name":"change_type","label":"Change Type","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"This article has been updated to include updated funding information: This work was partly supported by the National Natural Science Foundation of China (NSFC) (Grant nos. 62172194, 62202206 and U1836116), the Natural Science Foundation of Jiangsu Province, China (Grant no. BK20220515), the China Postdoctoral Science Foundation, China (Grant no. 2021M691310), and Qinglan Project of Jiangsu Province, China.","order":5,"name":"change_details","label":"Change Details","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare no competing interests.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Conflict of interest"}}],"article-number":"18"}}