{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,7]],"date-time":"2026-05-07T05:13:42Z","timestamp":1778130822573,"version":"3.51.4"},"reference-count":29,"publisher":"IEEE","license":[{"start":{"date-parts":[[2026,3,17]],"date-time":"2026-03-17T00:00:00Z","timestamp":1773705600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2026,3,17]],"date-time":"2026-03-17T00:00:00Z","timestamp":1773705600000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2026,3,17]]},"DOI":"10.1109\/saner-c67878.2026.00041","type":"proceedings-article","created":{"date-parts":[[2026,5,6]],"date-time":"2026-05-06T19:39:18Z","timestamp":1778096358000},"page":"257-264","source":"Crossref","is-referenced-by-count":0,"title":["Can Developers Rely on LLMs for Secure IaC Development?"],"prefix":"10.1109","author":[{"given":"Ehsan","family":"Firouzi","sequence":"first","affiliation":[{"name":"Technische Universität Clausthal,Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Shardul","family":"Bhatt","sequence":"additional","affiliation":[{"name":"Technische Universität Clausthal,Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mohammad","family":"Ghafari","sequence":"additional","affiliation":[{"name":"Technische Universität Clausthal,Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1145\/3551349.3556945"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1145\/3408897"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2019.00033"},{"key":"ref4","volume-title":"Understanding iac misconfiguration exploitation in cloud security","author":"Defense","year":"2025"},{"key":"ref5","volume-title":"8 all-too-common cloud vulnerabilities","year":"2023"},{"key":"ref6","volume-title":"100+ cloud security statistics for 2025","year":"2025"},{"key":"ref7","volume-title":"Top 5 common misconfigurations in cloud environments","author":"Consulting","year":"2025"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/ICSME.2019.00092"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/ASEW52652.2021.00045"},{"key":"ref10","volume-title":"Ai I 2025 stack overflow developer survey","year":"2025"},{"key":"ref11","volume-title":"Infrastructure as code (iac): Comparing the tools","year":"2022"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.54287\/gujsa.1373305"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2018.12.004"},{"key":"ref14","volume-title":"Puppet\u2019s 2024 state of devops report","author":"Puppet","year":"2025"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1145\/3674805.3695408"},{"key":"ref16","first-page":"189","article-title":"Does your configuration code smell?","volume-title":"Proceedings of the 13th international conference on mining software repositories","author":"Sharma"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/QUATIC.2018.00040"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2023.3265962"},{"key":"ref19","author":"Srivatsa","year":"2024","journal-title":"A survey of using large language models for generating infrastructure as code"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1145\/3597503.3639154"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1145\/3576915.3623157"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2024.112135"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1145\/3661167.3661263"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2025.112650"},{"key":"ref25","article-title":"From data leak to secret misses: The impact of data leakage on secret detection models","volume-title":"2026 IEEE International Conference on Software Analysis, Evolution and Reengineering","author":"Soltaniani"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1109\/SANER-C67878.2026.00042"},{"key":"ref27","author":"Steenhoek","year":"2024","journal-title":"A comprehensive study of the capabilities of large language models for vulnerability detection"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.5753\/sbes.2024.3642"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1145\/3722108"}],"event":{"name":"2026 IEEE International Conference on Software Analysis, Evolution and Reengineering - Companion (SANER-C)","location":"Limassol, Cyprus","start":{"date-parts":[[2026,3,17]]},"end":{"date-parts":[[2026,3,20]]}},"container-title":["2026 IEEE International Conference on Software Analysis, Evolution and Reengineering - Companion (SANER-C)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx8\/11500139\/11499992\/11500158.pdf?arnumber=11500158","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,7]],"date-time":"2026-05-07T04:43:08Z","timestamp":1778128988000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/11500158\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,3,17]]},"references-count":29,"URL":"https:\/\/doi.org\/10.1109\/saner-c67878.2026.00041","relation":{},"subject":[],"published":{"date-parts":[[2026,3,17]]}}}