An Empirical Study on Reproducible Packaging in Open-Source Ecosystems

The integrity of software builds is fundamental to the security of the software supply chain. While Thompson first raised the potential for attacks on build infrastructure in 1984, limited attention has been given to build integrity in the past 40 years, enabling recent attacks on SolarWinds, event-...

Full description

Saved in:
Bibliographic Details
Published in:Proceedings / International Conference on Software Engineering pp. 1052 - 1063
Main Authors: Benedetti, Giacomo, Solarin, Oreofe, Miller, Courtney, Tystahl, Greg, Enck, William, Kastner, Christian, Kapravelos, Alexandros, Merlo, Alessio, Verderame, Luca
Format: Conference Proceeding
Language:English
Published: IEEE 26.04.2025
Subjects:
Buildings
Codes
Ecosystems
Packaging
Reproducibility of results
Security
Software
Software engineering
Source coding
Supply chains
ISSN:1558-1225
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Be the first to leave a comment!
You must be logged in first