{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,18]],"date-time":"2026-06-18T04:09:48Z","timestamp":1781755788989,"version":"3.54.5"},"reference-count":116,"publisher":"Springer Science and Business Media LLC","issue":"3","license":[{"start":{"date-parts":[[2025,8,6]],"date-time":"2025-08-06T00:00:00Z","timestamp":1754438400000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,8,6]],"date-time":"2025-08-06T00:00:00Z","timestamp":1754438400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"funder":[{"DOI":"10.13039\/501100000038","name":"Natural Sciences and Engineering Research Council of Canada","doi-asserted-by":"publisher","award":["1-410521-1027-8000"],"award-info":[{"award-number":["1-410521-1027-8000"]}],"id":[{"id":"10.13039\/501100000038","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Software Qual J"],"published-print":{"date-parts":[[2025,9]]},"DOI":"10.1007\/s11219-025-09727-2","type":"journal-article","created":{"date-parts":[[2025,8,6]],"date-time":"2025-08-06T10:09:06Z","timestamp":1754474946000},"update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Investigating adversarial attacks in software analytics via machine learning explainability"],"prefix":"10.1007","volume":"33","author":[{"ORCID":"https:\/\/orcid.org\/0009-0006-5760-8211","authenticated-orcid":false,"given":"Md. Abdul","family":"Awal","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Mrigank","family":"Rochan","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Chanchal K.","family":"Roy","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","published-online":{"date-parts":[[2025,8,6]]},"reference":[{"key":"9727_CR1","doi-asserted-by":"crossref","unstructured":"Alshantti, A., Varagnolo, D., Rasheed, A., Rahmati, A., & Westad, F. (2023). Castgan: Cascaded generative adversarial network for realistic tabular data synthesis. arXiv:2307.00384.","DOI":"10.1109\/ACCESS.2024.3356913"},{"key":"9727_CR2","doi-asserted-by":"crossref","unstructured":"Alsulami, B., Dauber, E., Harang, R., Mancoridis, S., & Greenstadt, R. (2017). Source code authorship attribution using long short-term memory based networks. In: Computer Security\u2013ESORICS 2017: 22nd European Symposium on Research in Computer Security, Oslo, Norway, September 11-15, 2017, Proceedings, Part I 22, (pp. 65\u201382). Springer","DOI":"10.1007\/978-3-319-66402-6_6"},{"key":"9727_CR3","doi-asserted-by":"crossref","unstructured":"Amich, A., & Eshete, B. (2021). Explanation-guided diagnosis of machine learning evasion attacks. In: Security and Privacy in Communication Networks: 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6\u20139, 2021, Proceedings, Part I 17, (pp. 207\u2013228). Springer","DOI":"10.1007\/978-3-030-90019-9_11"},{"key":"9727_CR4","doi-asserted-by":"crossref","unstructured":"Amich, A., & Eshete, B. (2022). Eg-booster: explanation-guided booster of ml evasion attacks. In: Proceedings of the Twelfth ACM Conference on Data and Application Security and Privacy, (pp. 16\u201328).","DOI":"10.1145\/3508398.3511510"},{"key":"9727_CR5","doi-asserted-by":"crossref","unstructured":"Applis, L., Panichella, A., & Deursen, A. (2021). Assessing robustness of ml-based program analysis tools using metamorphic program transformations. In: 2021 36th IEEE\/ACM International Conference on Automated Software Engineering (ASE), (pp. 1377\u20131381). IEEE","DOI":"10.1109\/ASE51524.2021.9678706"},{"key":"9727_CR6","doi-asserted-by":"crossref","unstructured":"Awal, M.A., & Roy, C.K. (2024). Evaluatexai: A framework to evaluate the reliability and consistency of rule-based xai techniques for software analytics tasks. Journal of Systems and Software, 112159","DOI":"10.1016\/j.jss.2024.112159"},{"key":"9727_CR7","unstructured":"Awal, M.A., Rochan, M., & Roy, C.K. (2024). Large language models as robust data generators in software analytics: Are we there yet? arXiv:2411.10565"},{"key":"9727_CR8","unstructured":"Ballet, V., Renard, X., Aigrain, J., Laugel, T., Frossard, P., & Detyniecki, M. (2019). Imperceptible adversarial attacks on tabular data. arXiv:1911.03274."},{"key":"9727_CR9","unstructured":"Bergstra, J., & Bengio, Y. (2012). Random search for hyper-parameter optimization. Journal of Machine Learning Research, 13(2)."},{"key":"9727_CR10","unstructured":"Bielik, P., & Vechev, M. (2020). Adversarial robustness for code. In: International Conference on Machine Learning, (pp. 896\u2013907). PMLR"},{"key":"9727_CR11","doi-asserted-by":"crossref","unstructured":"Bosu, A., Greiler, M., & Bird, C. (2015). Characteristics of useful code reviews: An empirical study at microsoft. In: 2015 IEEE\/ACM 12th working conference on mining software repositories, (pp. 146\u2013156). IEEE","DOI":"10.1109\/MSR.2015.21"},{"key":"9727_CR12","unstructured":"Brendel, W., Rauber, J., & Bethge, M. (2017). Decision-based adversarial attacks: Reliable attacks against black-box machine learning models. arXiv:1712.04248"},{"key":"9727_CR13","unstructured":"Buitinck, L., Louppe, G., Blondel, M., Pedregosa, F., Mueller, A., Grisel, O., Niculae, V., Prettenhofer, P., Gramfort, A., Grobler, J., Layton, R., VanderPlas, J., Joly, A., Holt, B., & Varoquaux, G. (2013). API design for machine learning software: experiences from the scikit-learn project. In: ECML PKDD Workshop: Languages for Data Mining and Machine Learning, (pp. 108\u2013122)."},{"key":"9727_CR14","doi-asserted-by":"crossref","unstructured":"Carlini, N., & Wagner, D. (2017). Towards evaluating the robustness of neural networks. In: 2017 IEEE Symposium on Security and Privacy (sp), (pp. 39\u201357). IEEE","DOI":"10.1109\/SP.2017.49"},{"key":"9727_CR15","unstructured":"Cartella, F., Anunciacao, O., Funabiki, Y., Yamaguchi, D., Akishita, T., & Elshocht, O. (2021). Adversarial attacks for tabular data: Application to fraud detection and imbalanced data. arXiv:2101.08030."},{"key":"9727_CR16","doi-asserted-by":"crossref","unstructured":"Catolino, G., Di\u00a0Nucci, D., & Ferrucci, F. (2019). Cross-project just-in-time bug prediction for mobile apps: An empirical assessment. In: 2019 IEEE\/ACM 6th International Conference on Mobile Software Engineering and Systems (MOBILESoft), (pp. 99\u2013110). IEEE","DOI":"10.1109\/MOBILESoft.2019.00023"},{"key":"9727_CR17","doi-asserted-by":"crossref","unstructured":"Chen, J., Jordan, M.I., & Wainwright, M.J. (2020). Hopskipjumpattack: A query-efficient decision-based attack. In: 2020 IEEE Symposium on Security and Privacy (sp), (pp. 1277\u20131294). IEEE","DOI":"10.1109\/SP40000.2020.00045"},{"key":"9727_CR18","doi-asserted-by":"crossref","unstructured":"Chen, L., Ye, Y., & Bourlai, T. (2017). Adversarial machine learning in malware detection: Arms race between evasion attack and defense. In: 2017 European Intelligence and Security Informatics Conference (EISIC), (pp. 99\u2013106). IEEE","DOI":"10.1109\/EISIC.2017.21"},{"key":"9727_CR19","doi-asserted-by":"crossref","unstructured":"Chen, P.-Y., Zhang, H., Sharma, Y., Yi, J., & Hsieh, C.-J. (2017). Zoo: Zeroth order optimization based black-box attacks to deep neural networks without training substitute models. In: Proceedings of the 10th ACM Workshop on Artificial Intelligence and Security, (pp. 15\u201326).","DOI":"10.1145\/3128572.3140448"},{"issue":"3","key":"9727_CR20","doi-asserted-by":"publisher","first-page":"494","DOI":"10.1037\/0033-2909.114.3.494","volume":"114","author":"N Cliff","year":"1993","unstructured":"Cliff, N. (1993). Dominance statistics: Ordinal analyses to answer ordinal questions. Psychological Bulletin, 114(3), 494.","journal-title":"Psychological Bulletin"},{"key":"9727_CR21","volume-title":"Contextual code completion using machine learning","author":"S Das","year":"2015","unstructured":"Das, S., & Shah, C. (2015). Contextual code completion using machine learning. Stanford University: Stanford university."},{"key":"9727_CR22","doi-asserted-by":"crossref","unstructured":"Du, X., Wen, M., Wei, Z., Wang, S., & Jin, H. (2023). An extensive study on adversarial attack against pre-trained models of code. In: Proceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, (pp. 489\u2013501).","DOI":"10.1145\/3611643.3616356"},{"key":"9727_CR23","unstructured":"Esmaeilpour, M., Chaalia, N., Abusitta, A., Devailly, F.-X., Maazoun, W., & Cardinal, P. (2022). Rcc-gan: Regularized compound conditional gan for large-scale tabular data synthesis. arXiv:2205.11693."},{"key":"9727_CR24","doi-asserted-by":"crossref","unstructured":"Feng, S., Suo, W., Wu, Y., Zou, D., Liu, Y., & Jin, H. (2024). Machine learning is all you need: A simple token-based approach for effective code clone detection. In: Proceedings of the IEEE\/ACM 46th International Conference on Software Engineering, (pp. 1\u201313).","DOI":"10.1145\/3597503.3639114"},{"key":"9727_CR25","doi-asserted-by":"crossref","unstructured":"Gavrilu\u0163, D., Cimpoe\u015fu, M., Anton, D., & Ciortuz, L. (2009). Malware detection using machine learning. In: 2009 International Multiconference on Computer Science and Information Technology, (pp. 735\u2013741). IEEE","DOI":"10.1109\/IMCSIT.2009.5352759"},{"key":"9727_CR26","unstructured":"Goodfellow, I.J., Shlens, J., & Szegedy, C. (2014). Explaining and harnessing adversarial examples. arXiv:1412.6572."},{"key":"9727_CR27","unstructured":"Grosse, K., Manoharan, P., Papernot, N., Backes, M., & McDaniel, P. (2017). On the (statistical) detection of adversarial examples. arXiv:1702.06280."},{"key":"9727_CR28","doi-asserted-by":"crossref","unstructured":"Guo, W., Mu, D., Xu, J., Su, P., Wang, G., & Xing, X. (2018). Lemna: Explaining deep learning based security applications. In: Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, (pp. 364\u2013379).","DOI":"10.1145\/3243734.3243792"},{"key":"9727_CR29","doi-asserted-by":"publisher","first-page":"159","DOI":"10.1007\/s10664-014-9351-7","volume":"21","author":"Y Guo","year":"2016","unstructured":"Guo, Y., Sp\u00ednola, R. O., & Seaman, C. (2016). Exploring the costs of technical debt management-a case study. Empirical Software Engineering, 21, 159\u2013182.","journal-title":"Empirical Software Engineering"},{"issue":"1","key":"9727_CR30","doi-asserted-by":"publisher","first-page":"29","DOI":"10.1148\/radiology.143.1.7063747","volume":"143","author":"JA Hanley","year":"1982","unstructured":"Hanley, J. A., & McNeil, B. J. (1982). The meaning and use of the area under a receiver operating characteristic (roc) curve. Radiology, 143(1), 29\u201336.","journal-title":"Radiology"},{"key":"9727_CR31","unstructured":"Hashemi, M., & Fathi, A. (2020). Permuteattack: Counterfactual explanation of machine learning credit scorecards. arXiv:2008.10138."},{"key":"9727_CR32","doi-asserted-by":"crossref","unstructured":"He, J., & Vechev, M. (2023). Large language models for code: Security hardening and adversarial testing. In: Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security, (pp. 1865\u20131879).","DOI":"10.1145\/3576915.3623175"},{"key":"9727_CR33","doi-asserted-by":"crossref","unstructured":"Hu, A., Xie, R., Lu, Z., Hu, A., & Xue, M. (2021). Tablegan-mca: Evaluating membership collisions of gan-synthesized tabular data releasing. In: ACM SIGSAC Conference on CCS, (pp. 2096\u20132112).","DOI":"10.1145\/3460120.3485251"},{"key":"9727_CR34","doi-asserted-by":"crossref","unstructured":"Hu, Y., Zou, D., Peng, J., Wu, Y., Shan, J., & Jin, H. (2022). Treecen: Building tree graph for scalable semantic code clone detection. In: Proceedings of the 37th IEEE\/ACM International Conference on Automated Software Engineering, (pp. 1\u201312).","DOI":"10.1145\/3551349.3556927"},{"issue":"1","key":"9727_CR35","doi-asserted-by":"publisher","first-page":"304","DOI":"10.1109\/TR.2020.3001918","volume":"70","author":"W Hua","year":"2020","unstructured":"Hua, W., Sui, Y., Wan, Y., Liu, G., & Xu, G. (2020). Fcca: Hybrid code representation for functional clone detection using attention networks. IEEE Transactions on Reliability, 70(1), 304\u2013318.","journal-title":"IEEE Transactions on Reliability"},{"key":"9727_CR36","doi-asserted-by":"crossref","unstructured":"Hyeong, J., Kim, J., Park, N., & Jajodia, S. (2022). An empirical study on the membership inference attack against tabular data synthesis models. In: Proceedings of the 31st ACM International Conference on Information & Knowledge Management, (pp. 4064\u20134068).","DOI":"10.1145\/3511808.3557546"},{"key":"9727_CR37","doi-asserted-by":"crossref","unstructured":"Inkawhich, N., Wen, W., Li, H.H., & Chen, Y. (2019). Feature space perturbations yield more transferable adversarial examples. In: CVPR, (pp. 7066\u20137074).","DOI":"10.1109\/CVPR.2019.00723"},{"key":"9727_CR38","doi-asserted-by":"crossref","unstructured":"Jha, A., & Reddy, C.K. (2023). Codeattack: Code-based adversarial attacks for pre-trained programming language models. In: Proceedings of the AAAI Conference on Artificial Intelligence, (vol. 37, pp. 14892\u201314900).","DOI":"10.1609\/aaai.v37i12.26739"},{"key":"9727_CR39","doi-asserted-by":"crossref","unstructured":"Jia, J., Srikant, S., Mitrovska, T., Gan, C., Chang, S., Liu, S., & O\u2019Reilly, U.-M. (2023). Clawsat: Towards both robust and accurate code models. In: 2023 IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), (pp. 212\u2013223). IEEE","DOI":"10.1109\/SANER56733.2023.00029"},{"issue":"1","key":"9727_CR40","doi-asserted-by":"publisher","first-page":"166","DOI":"10.1109\/TSE.2020.2982385","volume":"48","author":"J Jiarpakdee","year":"2020","unstructured":"Jiarpakdee, J., Tantithamthavorn, C. K., Dam, H. K., & Grundy, J. (2020). An empirical study of model-agnostic techniques for defect prediction models. IEEE Transactions on Software Engineering, 48(1), 166\u2013185.","journal-title":"IEEE Transactions on Software Engineering"},{"issue":"6","key":"9727_CR41","doi-asserted-by":"publisher","first-page":"757","DOI":"10.1109\/TSE.2012.70","volume":"39","author":"Y Kamei","year":"2012","unstructured":"Kamei, Y., Shihab, E., Adams, B., Hassan, A. E., Mockus, A., Sinha, A., & Ubayashi, N. (2012). A large-scale empirical study of just-in-time quality assurance. IEEE Transactions on Software Engineering, 39(6), 757\u2013773.","journal-title":"IEEE Transactions on Software Engineering"},{"key":"9727_CR42","doi-asserted-by":"crossref","unstructured":"Kireev, K., Kulynych, B., & Troncoso, C. (2022). Adversarial robustness for tabular data through cost and utility awareness. arXiv:2208.13058.","DOI":"10.14722\/ndss.2023.24924"},{"issue":"6","key":"9727_CR43","first-page":"90","volume":"1","author":"TM Kodinariya","year":"2013","unstructured":"Kodinariya, T. M., Makwana, P. R., et al. (2013). Review on determining number of cluster in k-means clustering. International Journal, 1(6), 90\u201395.","journal-title":"International Journal"},{"key":"9727_CR44","doi-asserted-by":"crossref","unstructured":"Li, Z., Chen, G., Chen, C., Zou, Y., & Xu, S. (2022). Ropgen: Towards robust code authorship attribution via automatic coding style transformation. In: Proceedings of the 44th International Conference on Software Engineering, (pp. 1906\u20131918).","DOI":"10.1145\/3510003.3510181"},{"key":"9727_CR45","doi-asserted-by":"crossref","unstructured":"Li, Y., Hua, J., Wang, H., Chen, C., & Liu, Y. (2021). Deeppayload: Black-box backdoor attack on deep learning models through neural payload injection. In: 2021 IEEE\/ACM 43rd International Conference on Software Engineering (ICSE), (pp. 263\u2013274). IEEE","DOI":"10.1109\/ICSE43902.2021.00035"},{"key":"9727_CR46","unstructured":"Liashchynskyi, P., & Liashchynskyi, P. (2019). Grid search, random search, genetic algorithm: a big comparison for nas. arXiv:1912.06059."},{"key":"9727_CR47","doi-asserted-by":"crossref","unstructured":"Liu, D., & Zhang, S. (2024). Alanca: Active learning guided adversarial attacks for code comprehension on diverse pre-trained and large language models. In: 2024 IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), (pp. 602\u2013613). IEEE","DOI":"10.1109\/SANER60148.2024.00067"},{"key":"9727_CR48","doi-asserted-by":"crossref","unstructured":"Liu, X., Zhang, J., Lin, Y., & Li, H. (2019). Atmpa: attacking machine learning-based malware visualization detection methods via adversarial examples. In: Proceedings of the International Symposium on Quality of Service, (pp. 1\u201310).","DOI":"10.1145\/3326285.3329073"},{"key":"9727_CR49","doi-asserted-by":"publisher","first-page":"3620","DOI":"10.1109\/TIFS.2021.3080507","volume":"16","author":"Q Liu","year":"2021","unstructured":"Liu, Q., Ji, S., Liu, C., & Wu, C. (2021). A practical black-box attack on source code authorship identification classifiers. IEEE Transactions on Information Forensics and Security, 16, 3620\u20133633.","journal-title":"IEEE Transactions on Information Forensics and Security"},{"key":"9727_CR50","unstructured":"Lundberg, S.M., & Lee, S.-I. (2017). A unified approach to interpreting model predictions. In: Guyon, I., Luxburg, U.V., Bengio, S., Wallach, H., Fergus, R., Vishwanathan, S., & Garnett, R. (eds.) Advances in Neural Information Processing Systems 30, (pp. 4765\u20134774). Curran Associates, Inc. http:\/\/papers.nips.cc\/paper\/7062-a-unified-approach-to-interpreting-model-predictions.pdf"},{"issue":"1","key":"9727_CR51","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3488269","volume":"31","author":"Y Lyu","year":"2021","unstructured":"Lyu, Y., Rajbahadur, G. K., Lin, D., Chen, B., & Jiang, Z. M. (2021). Towards a consistent interpretation of aiops models. ACM Transactions on Software Engineering and Methodology (TOSEM), 31(1), 1\u201338.","journal-title":"ACM Transactions on Software Engineering and Methodology (TOSEM)"},{"key":"9727_CR52","unstructured":"Mathov, Y., Levy, E., Katzir, Z., Shabtai, A., & Elovici, Y. (2020). Not all datasets are born equal: On heterogeneous data and adversarial examples. arXiv:2010.03180."},{"issue":"2","key":"9727_CR53","doi-asserted-by":"publisher","first-page":"103","DOI":"10.1109\/TSE.2015.2465386","volume":"42","author":"PW McBurney","year":"2015","unstructured":"McBurney, P. W., & McMillan, C. (2015). Automatic source code summarization of context for java methods. IEEE Transactions on Software Engineering., 42(2), 103\u2013119.","journal-title":"IEEE Transactions on Software Engineering."},{"key":"9727_CR54","unstructured":"McGraw-Hill Book\u00a0Co, N.Y. (2012). Cast worldwide application software quality study: summary of key findings. Cast report Charette RN (1989) Software engineering, risk analysis and management Intertext publications"},{"key":"9727_CR55","doi-asserted-by":"crossref","unstructured":"McIntosh, S., Kamei, Y., Adams, B., & Hassan, A.E. (2014). The impact of code review coverage and code review participation on software quality: A case study of the qt, vtk, and itk projects. In: Proceedings of the 11th Working Conference on Mining Software Repositories, (pp. 192\u2013201).","DOI":"10.1145\/2597073.2597076"},{"key":"9727_CR56","unstructured":"Melo, T.L., Bravo, J., Sampaio, M.O., Romano, P., Ferreira, H., Ascens\u00e3o, J.T., & Bizarro, P. (2023). Adversarial training for tabular data with attack propagation. arXiv:2307.15677."},{"key":"9727_CR57","doi-asserted-by":"publisher","first-page":"110407","DOI":"10.1016\/j.jss.2019.110407","volume":"158","author":"M Mondal","year":"2019","unstructured":"Mondal, M., Roy, B., Roy, C. K., & Schneider, K. A. (2019). An empirical study on bug propagation through code cloning. Journal of Systems and Software, 158, 110407.","journal-title":"Journal of Systems and Software"},{"key":"9727_CR58","doi-asserted-by":"crossref","unstructured":"Moreno, L., Bavota, G., Di\u00a0Penta, M., Oliveto, R., & Marcus, A. (2015). How can i use this method? In: 2015 IEEE\/ACM 37th IEEE International Conference on Software Engineering, (vol. 1, pp. 880\u2013890). IEEE","DOI":"10.1109\/ICSE.2015.98"},{"key":"9727_CR59","unstructured":"Mou, L., Li, G., Jin, Z., Zhang, L., & Wang, T. (2014). Tbcnn: A tree-based convolutional neural network for programming language processing. arXiv:1409.5718"},{"key":"9727_CR60","doi-asserted-by":"crossref","unstructured":"Nafi, K.W., Kar, T.S., Roy, B., Roy, C.K., & Schneider, K.A. (2019). Clcdsa: cross language code clone detection using syntactical features and api documentation. In: 2019 34th IEEE\/ACM International Conference on Automated Software Engineering (ASE), (pp. 1026\u20131037). IEEE","DOI":"10.1109\/ASE.2019.00099"},{"key":"9727_CR61","doi-asserted-by":"crossref","unstructured":"Nguyen, P.T., Di\u00a0Rocco, J., Di\u00a0Ruscio, D., Ochoa, L., Degueule, T., & Di\u00a0Penta, M. (2019). Focus: A recommender system for mining api function calls and usage patterns. In: 2019 IEEE\/ACM 41st International Conference on Software Engineering (ICSE), (pp. 1050\u20131060). IEEE","DOI":"10.1109\/ICSE.2019.00109"},{"key":"9727_CR62","doi-asserted-by":"crossref","unstructured":"Nguyen, P. T., Di\u00a0Ruscio, D., Di\u00a0Rocco, J., Di\u00a0Sipio, C., & Di\u00a0Penta, M. (2021). Adversarial machine learning: On the resilience of third-party library recommender systems. In: Evaluation and Assessment in Software Engineering, (pp. 247\u2013253).","DOI":"10.1145\/3463274.3463809"},{"key":"9727_CR63","doi-asserted-by":"crossref","unstructured":"Nguyen, P.T., Di\u00a0Sipio, C., Di\u00a0Rocco, J., Di\u00a0Penta, M., & Di\u00a0Ruscio, D. (2021). Adversarial attacks to api recommender systems: Time to wake up and smell the coffee? In: 2021 36th IEEE\/ACM International Conference on Automated Software Engineering (ASE), (pp. 253\u2013265). IEEE","DOI":"10.1109\/ASE51524.2021.9678946"},{"key":"9727_CR64","unstructured":"Nicolae, M.-I., Sinn, M., Tran, M.N., Buesser, B., Rawat, A., Wistuba, M., Zantedeschi, V., Baracaldo, N., Chen, B., Ludwig, H., Molloy, I., & Edwards, B. (2018). Adversarial robustness toolbox v1.2.0. arxiv:1807.01069"},{"key":"9727_CR65","unstructured":"Papernot, N., McDaniel, P., & Goodfellow, I. (2016). Transferability in machine learning: from phenomena to black-box attacks using adversarial samples. arXiv:1605.07277."},{"key":"9727_CR66","unstructured":"Pleiter, B., Tajalli, B., Koffas, S., Abad, G., Xu, J., Larson, M., & Picek, S. (2023). Tabdoor: Backdoor vulnerabilities in transformer-based neural networks for tabular data. arXiv:2311.07550."},{"key":"9727_CR67","doi-asserted-by":"crossref","unstructured":"Pornprasit, C., Tantithamthavorn, C., Jiarpakdee, J., & Fu, M., Thongtanunam, P. (2021). Pyexplainer: Explaining the predictions ofjust-in-time defect models. In: Proceedings of Th International Conference on Automated Software Engineering (ASE).","DOI":"10.1109\/ASE51524.2021.9678763"},{"key":"9727_CR68","doi-asserted-by":"crossref","unstructured":"Pour, M.V., Li, Z., Ma, L., & Hemmati, H. (2021). A search-based testing framework for deep neural networks of source code embedding. In: 2021 14th IEEE Conference on Software Testing, Verification and Validation (ICST), (pp. 36\u201346). IEEE","DOI":"10.1109\/ICST49551.2021.00016"},{"key":"9727_CR69","unstructured":"Quiring, E., Maier, A., & Rieck, K. (2019). Misleading authorship attribution of source code using adversarial learning. In: 28th USENIX Security Symposium (USENIX Security 19), (pp. 479\u2013496)."},{"key":"9727_CR70","doi-asserted-by":"crossref","unstructured":"Rahman, M.M., Roy, C.K., & Kula, R.G. (2017). Predicting usefulness of code review comments using textual features and developer experience. In: 2017 IEEE\/ACM 14th International Conference on Mining Software Repositories (MSR), (pp. 215\u2013226). IEEE","DOI":"10.1109\/MSR.2017.17"},{"key":"9727_CR71","doi-asserted-by":"crossref","unstructured":"Ribeiro, M.T., Singh, S., & Guestrin, C. (2016). \u201cwhy should I trust you?\u201d: Explaining the predictions of any classifier. In: Proceedings of the 22nd ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, San Francisco, CA, USA, August 13-17, 2016, (pp. 1135\u20131144).","DOI":"10.1145\/2939672.2939778"},{"key":"9727_CR72","doi-asserted-by":"crossref","unstructured":"Roy, S., Laberge, G., Roy, B., Khomh, F., Nikanjam, A., & Mondal, S. (2022). Why don\u2019t xai techniques agree? characterizing the disagreements between post-hoc explanations of defect predictions. In: 2022 IEEE International Conference on Software Maintenance and Evolution (ICSME), (pp. 444\u2013448). IEEE","DOI":"10.1109\/ICSME55016.2022.00056"},{"key":"9727_CR73","doi-asserted-by":"crossref","unstructured":"Sahs, J., & Khan, L. (2012). A machine learning approach to android malware detection. In: 2012 European Intelligence and Security Informatics Conference, (pp. 141\u2013147). IEEE","DOI":"10.1109\/EISIC.2012.34"},{"key":"9727_CR74","unstructured":"Schuster, R., Song, C., Tromer, E., & Shmatikov, V. (2021). You autocomplete me: Poisoning vulnerabilities in neural code completion. In: 30th USENIX Security Symposium (USENIX Security 21), (pp. 1559\u20131575)."},{"key":"9727_CR75","unstructured":"Severi, G., Meyer, J., Coull, S., & Oprea, A. (2021). $$\\{$$Explanation-Guided$$\\}$$ backdoor poisoning attacks against malware classifiers. In: 30th USENIX Security Symposium (USENIX Security 21), (pp. 1487\u20131504)."},{"key":"9727_CR76","unstructured":"Shrikumar, A., Greenside, P., & Kundaje, A. (2017). Learning important features through propagating activation differences. In: International Conference on Machine Learning, (pp. 3145\u20133153). PMLR"},{"key":"9727_CR77","doi-asserted-by":"publisher","first-page":"84","DOI":"10.1016\/j.inffus.2021.11.011","volume":"81","author":"R Shwartz-Ziv","year":"2022","unstructured":"Shwartz-Ziv, R., & Armon, A. (2022). Tabular data: Deep learning is not all you need. Information Fusion, 81, 84\u201390.","journal-title":"Information Fusion"},{"key":"9727_CR78","doi-asserted-by":"crossref","unstructured":"Simonetto, T., Dyrmishi, S., Ghamizi, S., Cordy, M., & Traon, Y.L. (2021). A unified framework for adversarial attack and defense in constrained feature space. arXiv:2112.01156","DOI":"10.24963\/ijcai.2022\/183"},{"key":"9727_CR79","unstructured":"Simonetto, T., Ghamizi, S., Desjardins, A., Cordy, M., & Traon, Y.L. (2023). Constrained adaptive attacks: Realistic evaluation of adversarial examples and robust training of deep neural networks for tabular data. arXiv:2311.04503."},{"key":"9727_CR80","unstructured":"Springer, J.M., Reinstadler, B.M., & O\u2019Reilly, U.-M. (2020). Strata: simple, gradient-free attacks for models of code. arXiv:2009.13562"},{"key":"9727_CR81","unstructured":"Srikant, S., Liu, S., Mitrovska, T., Chang, S., Fan, Q., Zhang, G., & O\u2019Reilly, U.-M. (2021). Generating adversarial computer programs using optimized obfuscations. arXiv:2103.11882."},{"key":"9727_CR82","doi-asserted-by":"crossref","unstructured":"Suciu, O., Coull, S.E., & Johns, J. (2019). Exploring adversarial examples in malware detection. In: 2019 IEEE Security and Privacy Workshops (SPW), (pp. 8\u201314). IEEE","DOI":"10.1109\/SPW.2019.00015"},{"key":"9727_CR83","doi-asserted-by":"crossref","unstructured":"Sun, Z., Du, X., Song, F., & Li, L. (2023). Codemark: Imperceptible watermarking for code datasets against neural code completion models. In: Proceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, (pp. 1561\u20131572).","DOI":"10.1145\/3611643.3616297"},{"key":"9727_CR84","doi-asserted-by":"crossref","unstructured":"Sun, R., Xue, M., Tyson, G., Dong, T., Li, S., Wang, S., Zhu, H., Camtepe, S., & Nepal, S. (2023). Mate! are you really aware? an explainability-guided testing framework for robustness of malware detectors. In: Proceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, (pp. 1573\u20131585).","DOI":"10.1145\/3611643.3616309"},{"key":"9727_CR85","doi-asserted-by":"crossref","unstructured":"Svajlenko, J., Islam, J.F., Keivanloo, I., Roy, C.K., & Mia, M.M. (2014). Towards a big data curated benchmark of inter-project code clones. In: 2014 IEEE International Conference on Software Maintenance and Evolution, (pp. 476\u2013480). IEEE","DOI":"10.1109\/ICSME.2014.77"},{"key":"9727_CR86","doi-asserted-by":"crossref","unstructured":"Svyatkovskiy, A., Lee, S., Hadjitofi, A., Riechert, M., Franco, J.V., & Allamanis, M. (2021). Fast and memory-efficient neural code completion. In: 2021 IEEE\/ACM 18th International Conference on Mining Software Repositories (MSR), (pp. 329\u2013340). IEEE","DOI":"10.1109\/MSR52588.2021.00045"},{"key":"9727_CR87","unstructured":"Szegedy, C., Zaremba, W., Sutskever, I., Bruna, J., Erhan, D., Goodfellow, I., & Fergus, R. (2013). Intriguing properties of neural networks. arXiv:1312.6199"},{"key":"9727_CR88","doi-asserted-by":"crossref","unstructured":"Tantithamthavorn, C.K., & Jiarpakdee, J. (2021). Explainable ai for software engineering. In: 2021 36th IEEE\/ACM International Conference on Automated Software Engineering (ASE), (pp. 1\u20132). IEEE","DOI":"10.1109\/ASE51524.2021.9678580"},{"key":"9727_CR89","doi-asserted-by":"crossref","unstructured":"Tantithamthavorn, C., McIntosh, S., Hassan, A.E., & Matsumoto, K. (2016).Automated parameter optimization of classification techniques for defect prediction models. In: Proceedings of the 38th International Conference on Software Engineering, (pp. 321\u2013332).","DOI":"10.1145\/2884781.2884857"},{"issue":"7","key":"9727_CR90","doi-asserted-by":"publisher","first-page":"683","DOI":"10.1109\/TSE.2018.2794977","volume":"45","author":"C Tantithamthavorn","year":"2018","unstructured":"Tantithamthavorn, C., McIntosh, S., Hassan, A. E., & Matsumoto, K. (2018). The impact of automated parameter optimization on defect prediction models. IEEE Transactions on Software Engineering, 45(7), 683\u2013711.","journal-title":"IEEE Transactions on Software Engineering"},{"key":"9727_CR91","doi-asserted-by":"crossref","unstructured":"Tian, Z., Chen, J., & Jin, Z. (2023). Code difference guided adversarial example generation for deep code models. In: 2023 38th IEEE\/ACM International Conference on Automated Software Engineering (ASE), (pp. 850\u2013862). IEEE","DOI":"10.1109\/ASE56229.2023.00149"},{"key":"9727_CR92","doi-asserted-by":"crossref","unstructured":"Tian, J., Wang, C., Li, Z., & Wen, Y. (2021). Generating adversarial examples of source code classification models via q-learning-based markov decision process. In: 2021 IEEE 21st International Conference on Software Quality, Reliability and Security (QRS), (pp. 807\u2013818). IEEE","DOI":"10.1109\/QRS54544.2021.00090"},{"key":"9727_CR93","doi-asserted-by":"publisher","first-page":"141987","DOI":"10.1109\/ACCESS.2019.2943639","volume":"7","author":"F Ullah","year":"2019","unstructured":"Ullah, F., Wang, J., Jabbar, S., Al-Turjman, F., & Alazab, M. (2019). Source code authorship attribution using hybrid approach of program dependence graph and deep learning model. IEEE Access, 7, 141987\u2013141999.","journal-title":"IEEE Access"},{"key":"9727_CR94","doi-asserted-by":"crossref","unstructured":"Wan, Y., Zhang, S., Zhang, H., Sui, Y., Xu, G., Yao, D., Jin, H., & Sun, L. (2022). You see what i want you to see: poisoning vulnerabilities in neural code search. In: Proceedings of the 30th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering, (pp. 1233\u20131245).","DOI":"10.1145\/3540250.3549153"},{"key":"9727_CR95","doi-asserted-by":"crossref","unstructured":"Wei, H., & Li, M. (2017). Supervised deep features for software functional clone detection by exploiting lexical and syntactical information in source code. In: IJCAI, (pp. 3034\u20133040).","DOI":"10.24963\/ijcai.2017\/423"},{"key":"9727_CR96","doi-asserted-by":"crossref","unstructured":"Wilcoxon, F. (1992). Individual comparisons by ranking methods. In: Breakthroughs in Statistics: Methodology and Distribution, (pp. 196\u2013202). Springer.","DOI":"10.1007\/978-1-4612-4380-9_16"},{"key":"9727_CR97","doi-asserted-by":"crossref","unstructured":"Wong, W.K., Wang, H., Ma, P., Wang, S., Jiang, M., Chen, T.Y., Tang, Q., Nie, S., & Wu, S. (2022). Deceiving deep neural networks-based binary code matching with adversarial programs. In: 2022 IEEE International Conference on Software Maintenance and Evolution (ICSME), (pp. 117\u2013128). IEEE","DOI":"10.1109\/ICSME55016.2022.00019"},{"key":"9727_CR98","doi-asserted-by":"crossref","unstructured":"Wu, Y., Feng, S., Zou, D., & Jin, H. (2022). Detecting semantic code clones by building ast-based markov chains model. In: Proceedings of the 37th IEEE\/ACM International Conference on Automated Software Engineering, (pp. 1\u201313).","DOI":"10.1145\/3551349.3560426"},{"key":"9727_CR99","doi-asserted-by":"crossref","unstructured":"Wu, Y., Zou, D., Dou, S., Yang, S., Yang, W., Cheng, F., Liang, H., & Jin, H. (2020). Scdetector: Software functional clone detection based on semantic tokens analysis. In: Proceedings of the 35th IEEE\/ACM International Conference on Automated Software Engineering, (pp. 821\u2013833).","DOI":"10.1145\/3324884.3416562"},{"issue":"1","key":"9727_CR100","first-page":"26","volume":"17","author":"J Wu","year":"2019","unstructured":"Wu, J., Chen, X.-Y., Zhang, H., Xiong, L.-D., Lei, H., & Deng, S.-H. (2019). Hyperparameter optimization for machine learning models based on bayesian optimization. Journal of Electronic Science and Technology, 17(1), 26\u201340.","journal-title":"Journal of Electronic Science and Technology"},{"key":"9727_CR101","unstructured":"Xu, Q., Tao, G., Cheng, S., & Zhang, X. (2020). Towards feature space adversarial attack. arXiv:2004.12385"},{"key":"9727_CR102","doi-asserted-by":"crossref","unstructured":"Yang, Z., Shi, J., He, J., & Lo, D. (2022). Natural attack for pre-trained models of code. In: Proceedings of the 44th International Conference on Software Engineering, (pp. 1482\u20131493).","DOI":"10.1145\/3510003.3510146"},{"key":"9727_CR103","doi-asserted-by":"publisher","first-page":"112182","DOI":"10.1016\/j.jss.2024.112182","volume":"218","author":"F Yang","year":"2024","unstructured":"Yang, F., Zeng, G., Zhong, F., Xiao, P., Zheng, W., & Qiu, F. (2024). Cfexplainer: Explainable just-in-time defect prediction based on counterfactuals. Journal of Systems and Software, 218, 112182.","journal-title":"Journal of Systems and Software"},{"key":"9727_CR104","doi-asserted-by":"crossref","unstructured":"Yatish, S., Jiarpakdee, J., Thongtanunam, P., & Tantithamthavorn, C. (2019). Mining software defects: Should we consider affected releases? In: 2019 IEEE\/ACM 41st International Conference on Software Engineering (ICSE), (pp. 654\u2013665). IEEE","DOI":"10.1109\/ICSE.2019.00075"},{"key":"9727_CR105","doi-asserted-by":"crossref","unstructured":"Yefet, N., Alon, U., & Yahav, E. (2020). Adversarial examples for models of code. Proceedings of the ACM on Programming Languages. 4(OOPSLA), 1\u201330","DOI":"10.1145\/3428230"},{"key":"9727_CR106","doi-asserted-by":"crossref","unstructured":"Yu, J., Fu, M., Ignatiev, A., Tantithamthavorn, C., & Stuckey, P. (2024). A formal explainer for just-in-time defect predictions. ACM Transactions on Software Engineering and Methodology.","DOI":"10.1145\/3664809"},{"key":"9727_CR107","doi-asserted-by":"crossref","unstructured":"Zeng, Z., Tan, H., Zhang, H., Li, J., Zhang, Y., & Zhang, L. (2022). An extensive study on pre-trained models for program understanding and generation. In: 31st ACM SIGSOFT ISSTA, (pp. 39\u201351).","DOI":"10.1145\/3533767.3534390"},{"key":"9727_CR108","doi-asserted-by":"crossref","unstructured":"Zhang, Q., Ding, Y., Tian, Y., Guo, J., Yuan, M., & Jiang, Y. (2021). Advdoor: adversarial backdoor attack of deep learning system. In: Proceedings of the 30th ACM SIGSOFT International Symposium on Software Testing and Analysis, (pp. 127\u2013138).","DOI":"10.1145\/3460319.3464809"},{"key":"9727_CR109","doi-asserted-by":"crossref","unstructured":"Zhang, H., Li, Z., Li, G., Ma, L., Liu, Y., & Jin, Z. (2020). Generating adversarial examples for holding robustness of source code processing models. In: Proceedings of the AAAI Conference on Artificial Intelligence, (vol. 34, pp. 1169\u20131176).","DOI":"10.1609\/aaai.v34i01.5469"},{"key":"9727_CR110","doi-asserted-by":"crossref","unstructured":"Zhang, J., Wang, X., Zhang, H., Sun, H., Wang, K., & Liu, X. (2019). A novel neural source code representation based on abstract syntax tree. In: 2019 IEEE\/ACM 41st International Conference on Software Engineering (ICSE), (pp. 783\u2013794). IEEE","DOI":"10.1109\/ICSE.2019.00086"},{"key":"9727_CR111","doi-asserted-by":"crossref","unstructured":"Zhang, R., Xia, H., Kang, Z., Li, Z., Du, Y., & Gao, M. (2024). Harmonizing transferability and imperceptibility: A novel ensemble adversarial attack. IEEE Internet of Things Journal.","DOI":"10.1109\/JIOT.2024.3373461"},{"key":"9727_CR112","doi-asserted-by":"crossref","unstructured":"Zhao, G., & Huang, J. (2018). Deepsim: deep learning code functional similarity. In: Proceedings of the 2018 26th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering, (pp. 141\u2013151).","DOI":"10.1145\/3236024.3236068"},{"key":"9727_CR113","doi-asserted-by":"crossref","unstructured":"Zhou, S., Huang, M., Sun, Y., & Li, K. (2024). Evolutionary multi-objective optimization for contextual adversarial example generation. Proceedings of the ACM on Software Engineering1(FSE), 2285\u20132308","DOI":"10.1145\/3660808"},{"issue":"4","key":"9727_CR114","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1145\/3501256","volume":"31","author":"Y Zhou","year":"2022","unstructured":"Zhou, Y., Zhang, X., Shen, J., Han, T., Chen, T., & Gall, H. (2022). Adversarial robustness of deep code comment generation. ACM Transactions on Software Engineering and Methodology (TOSEM), 31(4), 1\u201330.","journal-title":"ACM Transactions on Software Engineering and Methodology (TOSEM)"},{"key":"9727_CR115","unstructured":"Zhu, Y., & Pan, M. (2019). Automatic code summarization: A systematic literature review. arXiv:1909.04352"},{"key":"9727_CR116","doi-asserted-by":"crossref","unstructured":"Zhu, R., & Zhang, C. (2023). How robust is a large pre-trained language model for code generation? A case on attacking GPT2. In: 2023 IEEE International Conference on Software Analysis, Evolution and Reengineering (SANER), (pp. 708\u2013712). IEEE","DOI":"10.1109\/SANER56733.2023.00076"}],"container-title":["Software Quality Journal"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11219-025-09727-2.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s11219-025-09727-2\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11219-025-09727-2.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,27]],"date-time":"2025-09-27T11:05:47Z","timestamp":1758971147000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s11219-025-09727-2"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,8,6]]},"references-count":116,"journal-issue":{"issue":"3","published-print":{"date-parts":[[2025,9]]}},"alternative-id":["9727"],"URL":"https:\/\/doi.org\/10.1007\/s11219-025-09727-2","relation":{},"ISSN":["0963-9314","1573-1367"],"issn-type":[{"value":"0963-9314","type":"print"},{"value":"1573-1367","type":"electronic"}],"subject":[],"published":{"date-parts":[[2025,8,6]]},"assertion":[{"value":"8 July 2025","order":1,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"6 August 2025","order":2,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}},{"order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Declarations"}},{"value":"The authors declare no competing interests.","order":2,"name":"Ethics","group":{"name":"EthicsHeading","label":"Competing interests"}}],"article-number":"31"}}