{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,24]],"date-time":"2025-12-24T12:42:29Z","timestamp":1766580149250,"version":"3.44.0"},"publisher-location":"New York, NY, USA","reference-count":17,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,6,18]],"date-time":"2024-06-18T00:00:00Z","timestamp":1718668800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-sa\/4.0\/"}],"funder":[{"DOI":"10.13039\/501100006374","name":"HORIZON EUROPE Framework Programme","doi-asserted-by":"publisher","award":["101120393"],"award-info":[{"award-number":["101120393"]}],"id":[{"id":"10.13039\/501100006374","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,6,18]]},"DOI":"10.1145\/3661167.3661217","type":"proceedings-article","created":{"date-parts":[[2024,6,14]],"date-time":"2024-06-14T12:24:25Z","timestamp":1718367865000},"page":"429-432","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Detecting Security Fixes in Open-Source Repositories using Static Code Analyzers"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0009-0003-8209-074X","authenticated-orcid":false,"given":"Therese","family":"Fehrer","sequence":"first","affiliation":[{"name":"JADS, Tilburg University s-Hertogenbosch, Netherlands"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8911-7392","authenticated-orcid":false,"given":"Rocio","family":"Cabrera Lozoya","sequence":"additional","affiliation":[{"name":"SAP Security Research, France"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3506-8374","authenticated-orcid":false,"given":"Antonino","family":"Sabetta","sequence":"additional","affiliation":[{"name":"SAP Security Research, France"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4927-9324","authenticated-orcid":false,"given":"Dario","family":"Di Nucci","sequence":"additional","affiliation":[{"name":"University of Salerno, Italy"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1230-8961","authenticated-orcid":false,"given":"Damian A.","family":"Tamburri","sequence":"additional","affiliation":[{"name":"JADS, Eindhoven University of Technology ?s-Hertogenbosch, Netherlands"}]}],"member":"320","published-online":{"date-parts":[[2024,6,18]]},"reference":[{"key":"e_1_3_2_1_1_1","first-page":"429","volume-title":"2012 34th International Conference on Software Engineering (ICSE)","author":"Bhattacharya Pamela","unstructured":"[1] Pamela Bhattacharya, Marios Iliofotou, Iulian Neamtiu, and Michalis Faloutsos. Graph-based analysis and prediction for software evolution. In 2012 34th International Conference on Software Engineering (ICSE), pages 419\u2013429. IEEE, 2012."},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1007\/s42979-021-00566-z"},{"key":"e_1_3_2_1_3_1","first-page":"706","volume-title":"2016 IEEE\/ACM 38th International Conference on Software Engineering Companion (ICSE-C)","author":"Codabux Zadia","unstructured":"[3] Zadia Codabux and Byron\u00a0J Williams. Technical debt prioritization using predictive analytics. In 2016 IEEE\/ACM 38th International Conference on Software Engineering Companion (ICSE-C), pages 704\u2013706. IEEE, 2016."},{"key":"e_1_3_2_1_4_1","volume-title":"IEEE","author":"Di\u00a0Nucci Dario","year":"2018","unstructured":"[4] Dario Di\u00a0Nucci, Fabio Palomba, Damian\u00a0A Tamburri, Alexander Serebrenik, and Andrea De\u00a0Lucia. Detecting code smells using machine learning techniques: are we there yet? In 2018 ieee 25th international conference on software analysis, evolution and reengineering (saner), pages 612\u2013621. IEEE, 2018."},{"key":"e_1_3_2_1_5_1","volume-title":"Refactoring: improving the design of existing code","author":"Fowler Martin","year":"2018","unstructured":"[5] Martin Fowler. Refactoring: improving the design of existing code. Addison-Wesley Professional, 2018."},{"key":"e_1_3_2_1_6_1","volume-title":"August","author":"Ghaffarian Seyed\u00a0Mohammad","year":"2017","unstructured":"[6] Seyed\u00a0Mohammad Ghaffarian and Hamid\u00a0Reza Shahriari. Software vulnerability analysis and discovery using machine-learning and data-mining techniques: A survey. ACM Comput. Surv., 50(4), August 2017."},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/34.667881"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1049\/iet-sen.2017.0148"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/MS.2006.114"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/3416505.3423559"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.asoc.2014.11.023"},{"key":"e_1_3_2_1_12_1","first-page":"224","volume-title":"2011 International Symposium on Empirical Software Engineering and Measurement","author":"Premraj Rahul","unstructured":"[12] Rahul Premraj and Kim Herzig. Network versus code metrics to predict defects: A replication study. In 2011 International Symposium on Empirical Software Engineering and Measurement, pages 215\u2013224. IEEE, 2011."},{"key":"e_1_3_2_1_13_1","first-page":"582","volume-title":"2018 IEEE International Conference on Software Maintenance and Evolution (ICSME)","author":"Sabetta Antonino","unstructured":"[13] Antonino Sabetta and Michele Bezzi. A practical approach to the automatic classification of security-relevant commits. In 2018 IEEE International Conference on Software Maintenance and Evolution (ICSME), pages 579\u2013582. IEEE, 2018."},{"key":"e_1_3_2_1_14_1","volume-title":"February","author":"Tal Liran","year":"2019","unstructured":"[14] Liran Tal. The state of open source security report, February 2019."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/1540438.1540446"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1016\/S0893-6080(05)80023-1"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/1368088.1368161"}],"event":{"name":"EASE 2024: 28th International Conference on Evaluation and Assessment in Software Engineering","acronym":"EASE 2024","location":"Salerno Italy"},"container-title":["Proceedings of the 28th International Conference on Evaluation and Assessment in Software Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3661167.3661217","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3661167.3661217","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,22]],"date-time":"2025-08-22T11:16:02Z","timestamp":1755861362000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3661167.3661217"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,6,18]]},"references-count":17,"alternative-id":["10.1145\/3661167.3661217","10.1145\/3661167"],"URL":"https:\/\/doi.org\/10.1145\/3661167.3661217","relation":{},"subject":[],"published":{"date-parts":[[2024,6,18]]},"assertion":[{"value":"2024-06-18","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}