Systematic literature review of the trust reinforcement mechanisms exist in package ecosystems

Document detail
ID

oai:arXiv.org:2407.02522

Topic
Computer Science - Software Engine...
Author
Temelko, Angel Hou, Fang Farshidi, Siamak Jansen, Slinger
Category

Computer Science

Year

2024

listing date

7/10/2024

Metrics

Abstract

We conducted a thorough SLR to better grasp the challenges and possible solutions associated with existing npm security tools.

Our goal was to delve into documented experiences and findings.

Specifically, we were keen to learn about the motivations behind choosing third-party packages, software engineers' responses to warning messages, and their overall understanding of security issues.

The main aim of this review was to pinpoint prevailing trends, methods, and concerns in trust tools for the present npm environment.

Furthermore, we sought to understand the complexities of integrating SECO into platforms such as npm.

By analyzing earlier studies, our intention was to spot any overlooked areas and steer our research to address them.

Temelko, Angel,Hou, Fang,Farshidi, Siamak,Jansen, Slinger, 2024, Systematic literature review of the trust reinforcement mechanisms exist in package ecosystems

Document

Open

Share

Source

arXiv

Articles recommended by ES/IODE AI

Computer Science
Sparse-DeRF: Deblurred Neural Radiance Fields from Sparse View
 sparse images blurry derf
BMC Neuroscience
Mini review: Current status and perspective of S100B protein as a biomarker in daily clinical practice for diagnosis and prognosticating of clinical outcome in patients with neurological diseases with focus on acute brain injury
 protein s100b
Medicine & Public Health
Diabetes and obesity: the role of stress in the development of cancer
 stress diabetes mellitus obesity cancer non-communicable chronic disease stress diabetes obesity patients cause cancer