{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,19]],"date-time":"2026-04-19T06:41:14Z","timestamp":1776580874419,"version":"3.51.2"},"reference-count":48,"publisher":"Elsevier BV","license":[{"start":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T00:00:00Z","timestamp":1782864000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/tdm\/userlicense\/1.0\/"},{"start":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T00:00:00Z","timestamp":1782864000000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.elsevier.com\/legal\/tdmrep-license"},{"start":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T00:00:00Z","timestamp":1782864000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-017"},{"start":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T00:00:00Z","timestamp":1782864000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"},{"start":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T00:00:00Z","timestamp":1782864000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-012"},{"start":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T00:00:00Z","timestamp":1782864000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2026,7,1]],"date-time":"2026-07-01T00:00:00Z","timestamp":1782864000000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-004"}],"content-domain":{"domain":["elsevier.com","sciencedirect.com"],"crossmark-restriction":true},"short-container-title":["Information and Software Technology"],"published-print":{"date-parts":[[2026,7]]},"DOI":"10.1016\/j.infsof.2026.108129","type":"journal-article","created":{"date-parts":[[2026,3,21]],"date-time":"2026-03-21T15:55:55Z","timestamp":1774108555000},"page":"108129","update-policy":"https:\/\/doi.org\/10.1016\/elsevier_cm_policy","source":"Crossref","is-referenced-by-count":0,"special_numbering":"C","title":["CLAMPD-Net: Cross-language malicious package detection across PyPI and NPM with multimodal fusion"],"prefix":"10.1016","volume":"195","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-9354-0492","authenticated-orcid":false,"given":"Tahir","family":"Iqbal","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3929-3598","authenticated-orcid":false,"given":"Guowei","family":"Wu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-0666-3442","authenticated-orcid":false,"given":"Zahid","family":"Iqbal","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0009-0002-6754-8372","authenticated-orcid":false,"given":"Muhammad Bilal","family":"Mahmood","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"78","reference":[{"issue":"3","key":"10.1016\/j.infsof.2026.108129_b1","doi-asserted-by":"crossref","DOI":"10.1016\/j.respol.2024.104954","article-title":"From GitHub to GDP: A framework for measuring open source software innovation","volume":"53","author":"Korkmaz","year":"2024","journal-title":"Res. Policy"},{"key":"10.1016\/j.infsof.2026.108129_b2","series-title":"2022 Systems and Information Engineering Design Symposium","first-page":"110","article-title":"Measuring the impact of open source software innovation using network analysis on GitHub hosted python packages","author":"Banks","year":"2022"},{"issue":"1","key":"10.1016\/j.infsof.2026.108129_b3","doi-asserted-by":"crossref","first-page":"20","DOI":"10.1007\/s10664-024-10581-2","article-title":"Understanding vulnerabilities in software supply chains","volume":"30","author":"Shen","year":"2024","journal-title":"Empir. Softw. Eng."},{"key":"10.1016\/j.infsof.2026.108129_b4","series-title":"Deployable Machine Learning for Security Defense","first-page":"132","article-title":"A survey on common threats in npm and PyPi registries","author":"Kaplan","year":"2021"},{"key":"10.1016\/j.infsof.2026.108129_b5","series-title":"28th Annual Network and Distributed System Security Symposium, NDSS","article-title":"Towards measuring supply chain attacks on package managers for interpreted languages","author":"Duan","year":"2021"},{"key":"10.1016\/j.infsof.2026.108129_b6","series-title":"Open source malware index Q1 2025: Data exfil threats rising sharply","author":"Team","year":"2025"},{"issue":"2","key":"10.1016\/j.infsof.2026.108129_b7","doi-asserted-by":"crossref","first-page":"96","DOI":"10.1109\/MSEC.2022.3142338","article-title":"Top five challenges in software supply chain security: Observations from 30 industry and government organizations","volume":"20","author":"Enck","year":"2022","journal-title":"IEEE Secur. Priv."},{"issue":"5","key":"10.1016\/j.infsof.2026.108129_b8","doi-asserted-by":"crossref","DOI":"10.1145\/3714464","article-title":"Research directions in software supply chain security","volume":"34","author":"Williams","year":"2025","journal-title":"ACM Trans. Softw. Eng. Methodol."},{"key":"10.1016\/j.infsof.2026.108129_b9","series-title":"2023 IEEE Symposium on Security and Privacy","first-page":"1509","article-title":"SoK: Taxonomy of Attacks on Open-Source Software Supply Chains","author":"Ladisa","year":"2023"},{"key":"10.1016\/j.infsof.2026.108129_b10","series-title":"2021 IEEE International Conference on Software Analysis, Evolution and Reengineering","first-page":"446","article-title":"Empirical analysis of security vulnerabilities in python packages","author":"Alfadel","year":"2021"},{"key":"10.1016\/j.infsof.2026.108129_b11","series-title":"Proceedings of the 44th International Conference on Software Engineering","first-page":"1681","article-title":"Practical automated detection of malicious npm packages","author":"Sejfia","year":"2022"},{"key":"10.1016\/j.infsof.2026.108129_b12","series-title":"Proceedings of the 38th IEEE\/ACM International Conference on Automated Software Engineering","first-page":"166","article-title":"An empirical study of malicious code in PyPI ecosystem","author":"Guo","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b13","series-title":"Proceedings of the ACM Web Conference 2024","first-page":"1779","article-title":"Malicious package detection using metadata information","author":"Halder","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b14","article-title":"PypiGuard: A novel meta-learning approach for enhanced malicious package detection in PyPI through static-dynamic feature fusion","volume":"90","author":"Iqbal","year":"2025","journal-title":"J. Inf. Secur. Appl."},{"issue":"4","key":"10.1016\/j.infsof.2026.108129_b15","doi-asserted-by":"crossref","DOI":"10.1145\/3705304","article-title":"Killing two birds with one stone: Malicious package detection in NPM and PyPI using a single model of malicious behavior sequence","volume":"34","author":"Zhang","year":"2025","journal-title":"ACM Trans. Softw. Eng. Methodol."},{"key":"10.1016\/j.infsof.2026.108129_b16","series-title":"Proceedings of the 39th IEEE\/ACM International Conference on Automated Software Engineering","first-page":"1990","article-title":"Towards robust detection of open source software supply chain poisoning attacks in industry environments","author":"Zheng","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b17","series-title":"Proceedings of the 39th Annual Computer Security Applications Conference","first-page":"71","article-title":"On the feasibility of cross-language detection of malicious packages in npm and pypi","author":"Ladisa","year":"2023"},{"key":"10.1016\/j.infsof.2026.108129_b18","first-page":"345","article-title":"Analyzing the accessibility of GitHub repositories for PyPI and npm libraries","author":"Tsakpinis","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b19","series-title":"Proceedings of the 21st International Conference on Mining Software Repositories","first-page":"728","article-title":"MalwareBench: Malware samples are not enough","author":"Zahan","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b20","series-title":"Proceedings of the 15th International Conference on Mining Software Repositories","first-page":"181","article-title":"On the impact of security vulnerabilities in the npm package dependency network","author":"Decan","year":"2018"},{"key":"10.1016\/j.infsof.2026.108129_b21","series-title":"Detection of Intrusions and Malware, and Vulnerability Assessment: 17th International Conference, DIMVA 2020, Lisbon, Portugal, June 24\u201326, 2020, Proceedings","first-page":"23","article-title":"Backstabber\u2019s knife collection: A review of open source software supply chain attacks","author":"Ohm","year":"2020"},{"key":"10.1016\/j.infsof.2026.108129_b22","series-title":"US12132759B2 - Inline package name based supply chain attack detection and prevention - Google Patents","author":"Duan","year":"2022"},{"key":"10.1016\/j.infsof.2026.108129_b23","series-title":"32nd USENIX Security Symposium (USENIX Security 23)","first-page":"3439","article-title":"Beyond typosquatting: An in-depth look at package confusion","author":"Neupane","year":"2023"},{"key":"10.1016\/j.infsof.2026.108129_b24","series-title":"Proceedings of the 2023 Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses","first-page":"65","article-title":"The hitchhiker\u2019s guide to malicious third-party dependencies","author":"Ladisa","year":"2023"},{"key":"10.1016\/j.infsof.2026.108129_b25","series-title":"Securing the Software Package Supply Chain for Critical Systems","author":"Murali","year":"2025"},{"key":"10.1016\/j.infsof.2026.108129_b26","series-title":"Proceedings of the 39th IEEE\/ACM International Conference on Automated Software Engineering","first-page":"1159","article-title":"1+1>2: Integrating deep code behaviors with metadata features for malicious PyPI package detection","author":"Sun","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b27","series-title":"DySec: A machine learning-based dynamic analysis for detecting malicious packages in PyPI ecosystem","author":"Mehedi","year":"2025"},{"key":"10.1016\/j.infsof.2026.108129_b28","series-title":"Proceedings of the 39th IEEE\/ACM International Conference on Automated Software Engineering","first-page":"1146","article-title":"SpiderScan: Practical detection of malicious NPM packages based on graph-based behavior modeling and matching","author":"Huang","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b29","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2022.102872","article-title":"DMalNet: Dynamic malware analysis based on API feature engineering and graph learning","volume":"122","author":"Li","year":"2022","journal-title":"Comput. Secur."},{"key":"10.1016\/j.infsof.2026.108129_b30","series-title":"Proceedings of the 44th International Conference on Software Engineering","first-page":"672","article-title":"Demystifying the vulnerability propagation and its evolution via dependency trees in the NPM ecosystem","author":"Liu","year":"2022"},{"key":"10.1016\/j.infsof.2026.108129_b31","series-title":"2025 55th Annual IEEE\/IFIP International Conference on Dependable Systems and Networks","first-page":"371","article-title":"An analysis of malicious packages in open-source software in the wild","author":"Zhou","year":"2025"},{"key":"10.1016\/j.infsof.2026.108129_b32","series-title":"Proceedings of the 17th International Conference on Availability, Reliability and Security","article-title":"On the feasibility of supervised machine learning for the detection of malicious software packages","author":"Ohm","year":"2022"},{"key":"10.1016\/j.infsof.2026.108129_b33","article-title":"Towards measuring supply chain attacks on package managers for interpreted languages","author":"Duan","year":"2021","journal-title":"Netw. Distrib. Syst. Secur. (NDSS) Symp. 2021"},{"key":"10.1016\/j.infsof.2026.108129_b34","doi-asserted-by":"crossref","DOI":"10.1016\/j.cose.2022.102761","article-title":"Feature fusion-based malicious code detection with dual attention mechanism and bilstm","volume":"119","author":"Shen","year":"2022","journal-title":"Comput. Secur."},{"key":"10.1016\/j.infsof.2026.108129_b35","series-title":"Proceedings of the 40th ACM\/SIGAPP Symposium on Applied Computing","first-page":"1617","article-title":"A machine learning-based approach for detecting malicious pypi packages","author":"Samaana","year":"2025"},{"issue":"2","key":"10.1016\/j.infsof.2026.108129_b36","doi-asserted-by":"crossref","DOI":"10.3390\/s25020374","article-title":"MalHAPGNN: An enhanced call graph-based malware detection framework using hierarchical attention pooling graph neural network","volume":"25","author":"Guo","year":"2025","journal-title":"Sensors"},{"key":"10.1016\/j.infsof.2026.108129_b37","series-title":"Proceedings of the 45th International Conference on Software Engineering","first-page":"499","article-title":"Bad snakes: Understanding and improving python package index malware scanning","author":"Vu","year":"2023"},{"key":"10.1016\/j.infsof.2026.108129_b38","series-title":"PackageIntel: Leveraging large language models for automated intelligence extraction in package ecosystems","author":"Guo","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b39","series-title":"Proceedings of the 33rd USENIX Conference on Security Symposium","article-title":"DONAPI: malicious NPM packages detector using behavior sequence knowledge mapping","author":"Huang","year":"2024"},{"key":"10.1016\/j.infsof.2026.108129_b40","series-title":"QUT-DV25: A dataset for dynamic analysis of next-gen software supply chain attacks","author":"Mehedi","year":"2025"},{"issue":"FSE","key":"10.1016\/j.infsof.2026.108129_b41","doi-asserted-by":"crossref","DOI":"10.1145\/3660822","article-title":"Pyradar: Towards automatically retrieving and validating source code repository information for PyPI packages","volume":"1","author":"Gao","year":"2024","journal-title":"Proc. ACM Softw. Eng."},{"key":"10.1016\/j.infsof.2026.108129_b42","series-title":"GuardDog: Open-Source Dataset of Malicious Software Packages","author":"Labs","year":"2023"},{"key":"10.1016\/j.infsof.2026.108129_b43","series-title":"CLAMPD-1905: Cross-language malicious package detection dataset","author":"Iqbal","year":"2025"},{"key":"10.1016\/j.infsof.2026.108129_b44","doi-asserted-by":"crossref","DOI":"10.1016\/j.knosys.2024.111543","article-title":"CNN-LSTM and transfer learning models for malware classification based on opcodes and API calls","volume":"290","author":"Bensaoud","year":"2024","journal-title":"Knowl.-Based Syst."},{"issue":"2","key":"10.1016\/j.infsof.2026.108129_b45","doi-asserted-by":"crossref","first-page":"40","DOI":"10.1007\/s10515-024-00440-1","article-title":"Optimizing software vulnerability detection using RoBERTa and machine learning","volume":"31","author":"Do","year":"2024","journal-title":"Autom. Softw. Eng."},{"key":"10.1016\/j.infsof.2026.108129_b46","series-title":"Proceedings of the 31st International Conference on Neural Information Processing Systems","first-page":"4768","article-title":"A unified approach to interpreting model predictions","author":"Lundberg","year":"2017"},{"key":"10.1016\/j.infsof.2026.108129_b47","series-title":"2023 38th IEEE\/ACM International Conference on Automated Software Engineering","first-page":"1993","article-title":"MalWuKong: Towards fast, accurate, and multilingual detection of malicious code poisoning in OSS supply chains","author":"Li","year":"2023"},{"key":"10.1016\/j.infsof.2026.108129_b48","series-title":"Proceedings of the 34th USENIX Conference on Security Symposium","article-title":"MALGUARD: towards real-time, accurate, and actionable detection of malicious packages in PyPI ecosystem","author":"Gao","year":"2025"}],"container-title":["Information and Software Technology"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S0950584926001187?httpAccept=text\/xml","content-type":"text\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/api.elsevier.com\/content\/article\/PII:S0950584926001187?httpAccept=text\/plain","content-type":"text\/plain","content-version":"vor","intended-application":"text-mining"}],"deposited":{"date-parts":[[2026,4,19]],"date-time":"2026-04-19T05:46:57Z","timestamp":1776577617000},"score":1,"resource":{"primary":{"URL":"https:\/\/linkinghub.elsevier.com\/retrieve\/pii\/S0950584926001187"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,7]]},"references-count":48,"alternative-id":["S0950584926001187"],"URL":"https:\/\/doi.org\/10.1016\/j.infsof.2026.108129","relation":{},"ISSN":["0950-5849"],"issn-type":[{"value":"0950-5849","type":"print"}],"subject":[],"published":{"date-parts":[[2026,7]]},"assertion":[{"value":"Elsevier","name":"publisher","label":"This article is maintained by"},{"value":"CLAMPD-Net: Cross-language malicious package detection across PyPI and NPM with multimodal fusion","name":"articletitle","label":"Article Title"},{"value":"Information and Software Technology","name":"journaltitle","label":"Journal Title"},{"value":"https:\/\/doi.org\/10.1016\/j.infsof.2026.108129","name":"articlelink","label":"CrossRef DOI link to publisher maintained version"},{"value":"article","name":"content_type","label":"Content Type"},{"value":"\u00a9 2026 Elsevier B.V. All rights are reserved, including those for text and data mining, AI training, and similar technologies.","name":"copyright","label":"Copyright"}],"article-number":"108129"}}