SUMMARY Software change impact analysis (CIA) is a technique for identifying the effects of change, or estimating what needs to be modified accomplish change. Since 1980s, there have been many investigations on CIA, especially code‐based CIA techniques. However, very few surveys this topic. This article tries fill gap. And 30 papers that provide empirical evaluation 23 techniques are identified. Then, data was synthesized against four research questions. The study presents comparative...

Smart contract security is one of the core issues in any application based on blockchain. There are many techniques focusing smart security, however, due to diversity Solidity versions and limitations detection time, it difficult for them comprehensively localize defects different contracts. In this article, we propose a static defect method knowledge graph language present tool called <italic xmlns:mml="http://www.w3.org/1998/Math/MathML"...

Modern database applications are among the most widely used and complex software systems. They constantly evolve, responding to changes data, schemas, code. It is challenging manage these ensure that everything co-evolves consistently. For example, when a schema modified, all code interacts with must be changed accordingly. Although evolution have been extensively studied in isolation, co-evolution of has largely unexplored.

Software change impact analysis (CIA) is a key technique for identifying unpredicted and potential effects caused by changes made to software. Different types often have different mechanisms, even some do not other entities in programs spite of dependences existed between these the modified entity. In this paper, we propose static CIA technique, which considers mechanisms rules types, calculate sets. Precision improvement sets relies on 3 aspects: entity, entity entities, intuition that win...

As one of the most complex types vulnerabilities, reentrancy poses a significant threat to smart contract development. Indeed, millions dollars have evaporated due vulnerabilities contracts in past years. In this article, we propose new approach detect using fuzz testing and develop novel tool named ReDefender. Our consists three main steps: 1) <italic xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink">preprocess be detected:</i> when is uploaded, its...

Automated program repair can save tremendous manual efforts in software debugging. Therefore, a huge body of research have been dedicated to design and implement automated techniques. Among the existing techniques, genetic-programming-based techniques shown promising results. Recently, researchers found that random-search-based adaptive also produce effective In this work, we performed an extensive study for four including genetic-programming-based, random-search-based, brute-force-based Due...

Context-aware API recommendation techniques aim to generate a ranked list of candidate APIs on an editing position during development. The basic context used in traditional mainly focuses the from third-party libraries, limit or even ignore usage project-specific code. limited code may result lack information, and degrade effectiveness recommendation. To address this problem, we introduce novel type context, i.e., hierarchical which can leverage hidden information by analyzing call graph. In...

With the continuous development and innovation of blockchain technology, a large number networks with various features have emerged to satisfy needs differ-ent scenarios. For example, Cross-Chain technologies been proposed enable information interaction value transfer between two blockchains. In asset transaction, Hashed Timelock Contract (HTLC for short) algorithm is most widely used control transaction. However, HTLC has problem low-level security assurance in practical applications:...

With the loose coupling and dynamic attributes of Web service, implementation behavior may be different from original requirement, so itpsilas essential to implement run-time monitoring. Monitoring analyzes conformance a service requirements. This paper gives novel monitoring prototype framework. It introduces WS-policy express userpsilas requirement on services. Then, AOP (aspect oriented programming) technology is used extend BPEL execution engine in order capture information service....

Software change impact analysis (CIA) is a key technique to identify unpredicted and potential effects caused by software changes. In this paper, we propose new CIA based on compact effective representation for object oriented programs, called lattice of class method dependence (LoCMD). This novel can effectively capture the dependences between classes methods. Based LoCMD, our calculates ranked list impacted methods according metric, factor, which corresponds priority these be inspected....