{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:13:26Z","timestamp":1750220006811,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":4,"publisher":"ACM","license":[{"start":{"date-parts":[[2022,11,7]],"date-time":"2022-11-07T00:00:00Z","timestamp":1667779200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2022,11,7]]},"DOI":"10.1145\/3548606.3563443","type":"proceedings-article","created":{"date-parts":[[2022,11,7]],"date-time":"2022-11-07T11:41:28Z","timestamp":1667821288000},"page":"3555-3556","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["SCORED '22"],"prefix":"10.1145","author":[{"given":"Santiago","family":"Torres-Arias","sequence":"first","affiliation":[{"name":"Purdue University, West Lafayette, IN, USA"}]},{"given":"Marcela","family":"Melara","sequence":"additional","affiliation":[{"name":"Intel Corporation, Hillsboro, OR, USA"}]},{"given":"Laurent","family":"Simon","sequence":"additional","affiliation":[{"name":"Google Inc., Mountain View, CA, USA"}]}],"member":"320","published-online":{"date-parts":[[2022,11,7]]},"reference":[{"key":"e_1_3_2_1_1_1","first-page":"2021","volume":"202","unstructured":"Apache Software Foundation. 202 1. CVE- 2021 - 44832 . https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2021--44832 Apache Software Foundation. 2021. CVE-2021-44832. https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2021--44832","journal-title":"Apache Software Foundation."},{"key":"e_1_3_2_1_2_1","unstructured":"FireEye. 2020. Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor. FireEye Blogs - Threat Research. https:\/\/www.fireeye.com\/blog\/threat-research\/2020\/12\/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html  FireEye. 2020. Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor. FireEye Blogs - Threat Research. https:\/\/www.fireeye.com\/blog\/threat-research\/2020\/12\/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html"},{"key":"e_1_3_2_1_3_1","unstructured":"National Institute of Standards and Technology. 2021. Enhancing Software Supply Chain Security: Workshop and Call for Position Papers on Standards and Guidelines. https:\/\/www.nist.gov\/news-events\/events\/2021\/06\/enhancing-software-supply-chain-security-workshop-and-call-position  National Institute of Standards and Technology. 2021. Enhancing Software Supply Chain Security: Workshop and Call for Position Papers on Standards and Guidelines. https:\/\/www.nist.gov\/news-events\/events\/2021\/06\/enhancing-software-supply-chain-security-workshop-and-call-position"},{"key":"e_1_3_2_1_4_1","unstructured":"Isaac Z. Schlueter. 2016. kik left-pad and npm. The npm Blog. https:\/\/blog.npmjs.org\/post\/141577284765\/kik-left-pad-and-npm  Isaac Z. Schlueter. 2016. kik left-pad and npm. The npm Blog. https:\/\/blog.npmjs.org\/post\/141577284765\/kik-left-pad-and-npm"}],"event":{"name":"CCS '22: 2022 ACM SIGSAC Conference on Computer and Communications Security","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"],"location":"Los Angeles CA USA","acronym":"CCS '22"},"container-title":["Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3548606.3563443","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3548606.3563443","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:51:06Z","timestamp":1750182666000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3548606.3563443"}},"subtitle":["ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses"],"short-title":[],"issued":{"date-parts":[[2022,11,7]]},"references-count":4,"alternative-id":["10.1145\/3548606.3563443","10.1145\/3548606"],"URL":"https:\/\/doi.org\/10.1145\/3548606.3563443","relation":{},"subject":[],"published":{"date-parts":[[2022,11,7]]},"assertion":[{"value":"2022-11-07","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}