{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,8,28]],"date-time":"2025-08-28T14:10:01Z","timestamp":1756390201823,"version":"3.44.0"},"reference-count":0,"publisher":"Association for Computing Machinery (ACM)","issue":"9","license":[{"start":{"date-parts":[[2025,8,28]],"date-time":"2025-08-28T00:00:00Z","timestamp":1756339200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/publication-rights-and-licensing-policy"}],"funder":[{"DOI":"10.13039\/100000001","name":"National Science Foundation","doi-asserted-by":"publisher","award":["2336252"],"award-info":[{"award-number":["2336252"]}],"id":[{"id":"10.13039\/100000001","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["Commun. ACM"],"published-print":{"date-parts":[[2025,9]]},"abstract":"<jats:p>Shifting focus from assessing volume to effectiveness.<\/jats:p>","DOI":"10.1145\/3718081","type":"journal-article","created":{"date-parts":[[2025,7,29]],"date-time":"2025-07-29T15:09:45Z","timestamp":1753801785000},"page":"34-36","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Stop Using Vulnerability Counts to Measure Software Security"],"prefix":"10.1145","volume":"68","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4850-1408","authenticated-orcid":false,"given":"Andy","family":"Meneely","sequence":"first","affiliation":[{"name":"Rochester Institute of Technology, Rochester, New York, United States"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4271-9318","authenticated-orcid":false,"given":"Brandon","family":"Keller","sequence":"additional","affiliation":[{"name":"Rochester Institute of Technology, Rochester, New York, United States"}]}],"member":"320","published-online":{"date-parts":[[2025,8,28]]},"container-title":["Communications of the ACM"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3718081","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,8,28]],"date-time":"2025-08-28T13:55:51Z","timestamp":1756389351000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3718081"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025,8,28]]},"references-count":0,"journal-issue":{"issue":"9","published-print":{"date-parts":[[2025,9]]}},"alternative-id":["10.1145\/3718081"],"URL":"https:\/\/doi.org\/10.1145\/3718081","relation":{},"ISSN":["0001-0782","1557-7317"],"issn-type":[{"type":"print","value":"0001-0782"},{"type":"electronic","value":"1557-7317"}],"subject":[],"published":{"date-parts":[[2025,8,28]]},"assertion":[{"value":"2024-09-26","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2025-08-28","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}