A5082340689- Software Engineering Research
- Advanced Malware Detection Techniques
- Software Reliability and Analysis Research
- Security and Verification in Computing
- Advanced Data Storage Technologies
- Hate Speech and Cyberbullying Detection
- Wikis in Education and Collaboration
- Software Engineering Techniques and Practices
- Open Source Software Innovations
- Software System Performance and Reliability
- Spam and Phishing Detection
- Recommender Systems and Techniques
- Web Data Mining and Analysis
- Software Testing and Debugging Techniques
- Scientific Computing and Data Management
- Digital and Cyber Forensics
Wayne State University
2020-2025
Wayne State College
2022
Toxic conversations during software development interactions may have serious repercussions on a Free and Open Source Software (FOSS) project. For example, victims of toxic become afraid to express themselves, therefore get demotivated, eventually leave the Automated filtering help FOSS community maintain healthy among its members. However, off-the-shelf toxicity detectors perform poorly engineering dataset, such as one curated from code review comments. To counter this challenge, we present...
Peer code review has been found to be effective in identifying security vulnerabilities. However, despite practicing mandatory reviews, many Open Source Software (OSS) projects still encounter a large number of post-release vulnerabilities, as some defects escape those. Therefore, project manager may wonder if there was any weakness or inconsistency during that missed vulnerability. Answers this question help pinpointing areas concern and taking measures improve the effectiveness his/her...
Toxicity on GitHub can severely impact Open Source Software (OSS) development communities. To mitigate such behavior, a better understanding of its nature and how various measurable characteristics project contexts participants are associated with prevalence is necessary. achieve this goal, we conducted large-scale mixed-method empirical study 2,828 GitHub-based OSS projects randomly selected based stratified sampling strategy. Using ToxiCR, an SE domain-specific toxicity detector,...
Automated filtering of toxic conversations may help an Open-source software (OSS) community to maintain healthy interactions among the project participants. Although, several general purpose tools exist identify contents, those incorrectly flag some words commonly used in Software Engineering (SE) context as (e.g., `junk', `kill', and `dump') vice versa. To encounter this challenge, SE specific tool has been proposed by CMU Strudel Lab (referred `STRUDEL' hereinafter) combining output...
Background: As improving code review (CR) effectiveness is a priority for many software development organizations, projects have deployed CR analytics platforms to identify potential improvement areas. The number of issues identified, which crucial metric measure effectiveness, can be misleading if all are placed in the same bin. Therefore, finer-grained classification identified during CRs provide actionable insights improve effectiveness. Although recent work by Fregnan et al. proposed...
This paper presents a an empirically built and validated dataset of code reviews from the Chromium OS project that either identified or missed security vulnerabilities. The includes total 890 vulnerable changes categorized based on CWE specification is publicly available at: https://zenodo.org/record/4539891.
Attracting and retaining a steady stream of new contributors is crucial to ensuring the long-term survival open-source software (OSS) projects. However, there are two key research gaps regarding recommendations for onboarding OSS First, most existing based on limited number projects, which raises concerns about their generalizability. If recommendation yields conflicting results in different context, it could hinder newcomer's process rather than help them. Second, it's unclear whether these...
Toxic conversations during software development interactions may have serious repercussions on a Free and Open Source Software (FOSS) project. For example, victims of toxic become afraid to express themselves, therefore get demotivated, eventually leave the Automated filtering help FOSS community maintain healthy among its members. However, off-the-shelf toxicity detectors perform poorly Engineering (SE) datasets, such as one curated from code review comments. To encounter this challenge, we...
Background: As improving code review (CR) effectiveness is a priority for many software development organizations, projects have deployed CR analytics platforms to identify potential improvement areas. The number of issues identified, which crucial metric measure effectiveness, can be misleading if all are placed in the same bin. Therefore, finer-grained classification identified during CRs provide actionable insights improve effectiveness. Although recent work by Fregnan et al. proposed...
Automated filtering of toxic conversations may help an Open-source software (OSS) community to maintain healthy interactions among the project participants. Although, several general purpose tools exist identify contents, those incorrectly flag some words commonly used in Software Engineering (SE) context as (e.g., 'junk', 'kill', and 'dump') vice versa. To encounter this challenge, SE specific tool has been proposed by CMU Strudel Lab (referred `STRUDEL' hereinafter) combining output...
Context: Contemporary software development organizations lack diversity and the ratios of women in Free open-source (FOSS) communities are even lower than industry average. Although results recent studies hint existence biases against women, it is unclear to what extent such influence outcomes various tasks. Aim: We aim identify whether or participation code reviews (or pull requests) influenced by gender a developer.. Approach: With this goal, study includes total 1010 FOSS projects....
Modern code review (MCR) is a widely adopted software quality assurance practice in the contemporary industry. As developers spend significant amounts of time on MCR activities, even small improvement effectiveness will incur savings. most activities are heavily dependent manual work, there opportunities to improve through tool support. To address challenges, primary objective my proposed dissertation modern reviews with automation reviewer selection and bug identification. On this goal, I...
Peer code review has been found to be effective in identifying security vulnerabilities. However, despite practicing mandatory reviews, many Open Source Software (OSS) projects still encounter a large number of post-release vulnerabilities, as some defects escape those. Therefore, project manager may wonder if there was any weakness or inconsistency during that missed vulnerability. Answers this question help pinpointing areas concern and taking measures improve the effectiveness his/her...