{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,14]],"date-time":"2025-11-14T07:38:31Z","timestamp":1763105911659,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":36,"publisher":"ACM","license":[{"start":{"date-parts":[[2022,11,7]],"date-time":"2022-11-07T00:00:00Z","timestamp":1667779200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Japan Society for the Promotion of Science","award":["JP20K19774"],"award-info":[{"award-number":["JP20K19774"]}]},{"DOI":"10.13039\/501100001691","name":"Japan Society for the Promotion of Science","doi-asserted-by":"publisher","award":["JP20H05706"],"award-info":[{"award-number":["JP20H05706"]}],"id":[{"id":"10.13039\/501100001691","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2022,11,7]]},"DOI":"10.1145\/3540250.3560882","type":"proceedings-article","created":{"date-parts":[[2022,11,9]],"date-time":"2022-11-09T20:46:22Z","timestamp":1668026782000},"page":"1600-1604","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":7,"title":["In war and peace: the impact of world politics on software ecosystems"],"prefix":"10.1145","author":[{"given":"Raula Gaikovina","family":"Kula","sequence":"first","affiliation":[{"name":"NAIST, Japan"}]},{"given":"Christoph","family":"Treude","sequence":"additional","affiliation":[{"name":"University of Melbourne, Australia"}]}],"member":"320","published-online":{"date-parts":[[2022,11,9]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2022. CVE-2022-23812. https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2022-23812 (Accessed on 05\/11\/2022) \t\t\t\t  2022. CVE-2022-23812. https:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2022-23812 (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_2_1","unstructured":"2022. Discussion on node-ipc. https:\/\/github.com\/RIAEvangelist\/node-ipc\/discussions\/505 (Accessed on 05\/11\/2022) \t\t\t\t  2022. Discussion on node-ipc. https:\/\/github.com\/RIAEvangelist\/node-ipc\/discussions\/505 (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_3_1","unstructured":"2022. Faker Protest message. http:\/\/web.archive.org\/web\/20210704022108\/https:\/github.com\/Marak\/faker.js\/issues\/1046 (Accessed on 05\/11\/2022) \t\t\t\t  2022. Faker Protest message. http:\/\/web.archive.org\/web\/20210704022108\/https:\/github.com\/Marak\/faker.js\/issues\/1046 (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_4_1","unstructured":"2022. Github response to the war in Ukraine. https:\/\/github.blog\/2022-03-02-our-response-to-the-war-in-ukraine\/ (Accessed on 05\/11\/2022) \t\t\t\t  2022. Github response to the war in Ukraine. https:\/\/github.blog\/2022-03-02-our-response-to-the-war-in-ukraine\/ (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_5_1","unstructured":"2022. GitHub suspending Russian accounts deleted project history and pull requests. https:\/\/www.jessesquires.com\/blog\/2022\/04\/19\/github-suspending-russian-accounts\/ (Accessed on 05\/11\/2022) \t\t\t\t  2022. GitHub suspending Russian accounts deleted project history and pull requests. https:\/\/www.jessesquires.com\/blog\/2022\/04\/19\/github-suspending-russian-accounts\/ (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_6_1","unstructured":"2022. GitHub suspending Russian accounts deleted project history and pull requests. https:\/\/openssf.org\/community\/alpha-omega\/ (Accessed on 05\/11\/2022) \t\t\t\t  2022. GitHub suspending Russian accounts deleted project history and pull requests. https:\/\/openssf.org\/community\/alpha-omega\/ (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_7_1","unstructured":"2022. n. https:\/\/www.bleepingcomputer.com\/news\/security\/third-npm-protestware-event-source-polyfill-calls-russia-out\/ (Accessed on 05\/11\/2022) \t\t\t\t  2022. n. https:\/\/www.bleepingcomputer.com\/news\/security\/third-npm-protestware-event-source-polyfill-calls-russia-out\/ (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_8_1","unstructured":"2022. node-ipc GitHub Repository. https:\/\/github.com\/RIAEvangelist\/node-ipc (Accessed on 05\/11\/2022) \t\t\t\t  2022. node-ipc GitHub Repository. https:\/\/github.com\/RIAEvangelist\/node-ipc (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_9_1","unstructured":"2022. peacenotwar GitHub Repository. https:\/\/github.com\/RIAEvangelist\/peacenotwar (Accessed on 05\/11\/2022) \t\t\t\t  2022. peacenotwar GitHub Repository. https:\/\/github.com\/RIAEvangelist\/peacenotwar (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_10_1","unstructured":"2022. peacenotwar message. https:\/\/github.com\/medikoo\/es5-ext\/commit\/28de285ed433b45113f01e4ce7c74e9a356b2af2 (Accessed on 05\/11\/2022) \t\t\t\t  2022. peacenotwar message. https:\/\/github.com\/medikoo\/es5-ext\/commit\/28de285ed433b45113f01e4ce7c74e9a356b2af2 (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_11_1","unstructured":"2022. Terraform added Terms of Use. https:\/\/github.com\/terraform-aws-modules\/terraform-aws-ec2-instance\/commit\/6867788411a202b61187f9935e9eaa72a18f0bbe (Accessed on 05\/11\/2022) \t\t\t\t  2022. Terraform added Terms of Use. https:\/\/github.com\/terraform-aws-modules\/terraform-aws-ec2-instance\/commit\/6867788411a202b61187f9935e9eaa72a18f0bbe (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_12_1","unstructured":"Gerald Benischke. 2022. On the Weaponization of Open Source. https:\/\/www.computer.org\/publications\/tech-news\/community-voices\/on-the-weaponization-of-open-source (Accessed on 05\/11\/2022) \t\t\t\t  Gerald Benischke. 2022. On the Weaponization of Open Source. https:\/\/www.computer.org\/publications\/tech-news\/community-voices\/on-the-weaponization-of-open-source (Accessed on 05\/11\/2022)"},{"key":"#cr-split#-e_1_3_2_1_13_1.1","unstructured":"James Caddy Markus Wagner Christoph Treude Earl T Barr and Miltiadis Allamanis. 2022. Is Surprisal in Issue Trackers Actionable? arXiv preprint arXiv:2204.07363 https:\/\/doi.org\/10.48550\/arXiv.2204.07363 10.48550\/arXiv.2204.07363"},{"key":"#cr-split#-e_1_3_2_1_13_1.2","unstructured":"James Caddy Markus Wagner Christoph Treude Earl T Barr and Miltiadis Allamanis. 2022. Is Surprisal in Issue Trackers Actionable? arXiv preprint arXiv:2204.07363 https:\/\/doi.org\/10.48550\/arXiv.2204.07363"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE43902.2021.00093"},{"key":"e_1_3_2_1_15_1","first-page":"10","article-title":"Software diversity for future systems security","volume":"24","author":"Gherbi Abdelouahed","year":"2011","unstructured":"Abdelouahed Gherbi , Robert Charpentier , and Mario Couture . 2011 . Software diversity for future systems security . CrossTalk: The Journal of Defense Software Engineering , 24 , 5 (2011), 10 \u2013 13 . https:\/\/doi.org\/10.1.1.445.6492 Abdelouahed Gherbi, Robert Charpentier, and Mario Couture. 2011. Software diversity for future systems security. CrossTalk: The Journal of Defense Software Engineering, 24, 5 (2011), 10\u201313. https:\/\/doi.org\/10.1.1.445.6492","journal-title":"CrossTalk: The Journal of Defense Software Engineering"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/988672.988727"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/MC.2006.142"},{"key":"e_1_3_2_1_18_1","unstructured":"Open Source Initiative. 2007. The Open Source Definition. https:\/\/opensource.org\/osd (Accessed on 05\/11\/2022) \t\t\t\t  Open Source Initiative. 2007. The Open Source Definition. https:\/\/opensource.org\/osd (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/SANER.2015.7081869"},{"key":"#cr-split#-e_1_3_2_1_20_1.1","unstructured":"Raula Gaikovina Kula Ali Ouni Daniel M German and Katsuro Inoue. 2017. On the impact of micro-packages: An empirical study of the npm javascript ecosystem. arXiv preprint arXiv:1709.04638 https:\/\/doi.org\/10.48550\/arXiv.1709.04638 10.48550\/arXiv.1709.04638"},{"key":"#cr-split#-e_1_3_2_1_20_1.2","unstructured":"Raula Gaikovina Kula Ali Ouni Daniel M German and Katsuro Inoue. 2017. On the impact of micro-packages: An empirical study of the npm javascript ecosystem. arXiv preprint arXiv:1709.04638 https:\/\/doi.org\/10.48550\/arXiv.1709.04638"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-981-13-7099-1_6"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/2991079.2991102"},{"key":"#cr-split#-e_1_3_2_1_23_1.1","doi-asserted-by":"crossref","unstructured":"Suhaib Mujahid Rabe Abdalkareem and Emad Shihab. 2022. What are the characteristics of highly-selected packages? A case study on the npm ecosystem. arXiv preprint arXiv:2204.04562 https:\/\/doi.org\/10.48550\/arXiv.2204.04562 10.48550\/arXiv.2204.04562","DOI":"10.2139\/ssrn.4070797"},{"key":"#cr-split#-e_1_3_2_1_23_1.2","doi-asserted-by":"crossref","unstructured":"Suhaib Mujahid Rabe Abdalkareem and Emad Shihab. 2022. What are the characteristics of highly-selected packages? A case study on the npm ecosystem. arXiv preprint arXiv:2204.04562 https:\/\/doi.org\/10.48550\/arXiv.2204.04562","DOI":"10.2139\/ssrn.4070797"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1177\/1468795X03003001693"},{"key":"e_1_3_2_1_25_1","unstructured":"Open Source Initiative Statement on Protestware. 2007. The Open Source Definition. https:\/\/blog.opensource.org\/open-source-protestware-harms-open-source\/ (Accessed on 05\/11\/2022) \t\t\t\t  Open Source Initiative Statement on Protestware. 2007. The Open Source Definition. https:\/\/blog.opensource.org\/open-source-protestware-harms-open-source\/ (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1177\/0095399706290632"},{"key":"e_1_3_2_1_27_1","unstructured":"Daniel Stenberg. 2022. LOGJ4 SECURITY INQUIRY \u2013 RESPONSE REQUIRED. https:\/\/daniel.haxx.se\/blog\/2022\/01\/24\/logj4-security-inquiry-response-required\/ (Accessed on 05\/11\/2022) \t\t\t\t  Daniel Stenberg. 2022. LOGJ4 SECURITY INQUIRY \u2013 RESPONSE REQUIRED. https:\/\/daniel.haxx.se\/blog\/2022\/01\/24\/logj4-security-inquiry-response-required\/ (Accessed on 05\/11\/2022)"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1109\/SANER.2017.7884606"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2018.2877678"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10664-019-09771-0"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2010.47"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE-SEIP55303.2022.9794068"},{"key":"e_1_3_2_1_33_1","unstructured":"Dimko Zhluktenko. 2022. Tweet. https:\/\/twitter.com\/dim0kq\/status\/1502372427589996545 (Accessed on 05\/11\/2022) \t\t\t\t  Dimko Zhluktenko. 2022. Tweet. https:\/\/twitter.com\/dim0kq\/status\/1502372427589996545 (Accessed on 05\/11\/2022)"}],"event":{"name":"ESEC\/FSE '22: 30th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","NUS NUS"],"location":"Singapore Singapore","acronym":"ESEC\/FSE '22"},"container-title":["Proceedings of the 30th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3540250.3560882","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3540250.3560882","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:49:04Z","timestamp":1750182544000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3540250.3560882"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,11,7]]},"references-count":36,"alternative-id":["10.1145\/3540250.3560882","10.1145\/3540250"],"URL":"https:\/\/doi.org\/10.1145\/3540250.3560882","relation":{},"subject":[],"published":{"date-parts":[[2022,11,7]]},"assertion":[{"value":"2022-11-09","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}