Research on third-party libraries in android apps: A taxonomy and systematic literature review
Third-party libraries (TPLs) have been widely used in mobile apps, which play an essential
part in the entire Android ecosystem. However, TPL is a double-edged sword. On the one …
part in the entire Android ecosystem. However, TPL is a double-edged sword. On the one …
Restoring execution environments of Jupyter notebooks
More than ninety percent of published Jupyternotebooks do not state dependencies on
external packages. This makes them non-executable and thus hinders reproducibility of …
external packages. This makes them non-executable and thus hinders reproducibility of …
Towards understanding third-party library dependency in c/c++ ecosystem
Third-party libraries (TPLs) are frequently reused in software to reduce development cost
and the time to market. However, external library dependencies may introduce …
and the time to market. However, external library dependencies may introduce …
Watchman: Monitoring dependency conflicts for python library ecosystem
The PyPI ecosystem has indexed millions of Python libraries to allow developers to
automatically download and install dependencies of their projects based on the specified …
automatically download and install dependencies of their projects based on the specified …
Understanding the threats of upstream vulnerabilities to downstream projects in the maven ecosystem
Y Wu, Z Yu, M Wen, Q Li, D Zou… - 2023 IEEE/ACM 45th …, 2023 - ieeexplore.ieee.org
Modern software systems are increasingly relying on dependencies from the ecosystem. A
recent estimation shows that around 35% of an open-source project's code come from its …
recent estimation shows that around 35% of an open-source project's code come from its …
Characterizing usages, updates and risks of third-party libraries in Java projects
Third-party libraries are a key building block in software development as they allow
developers to reuse common functionalities instead of reinventing the wheel. However, third …
developers to reuse common functionalities instead of reinventing the wheel. However, third …
smartpip: A smart approach to resolving python dependency conflict issues
As one of the representative software ecosystems, PyPI, together with the Python package
management tool pip, greatly facilitates Python developers to automatically manage the …
management tool pip, greatly facilitates Python developers to automatically manage the …
Knowledge-based version incompatibility detection for deep learning
Version incompatibility issues are rampant when reusing or reproducing deep learning
models and applications. Existing techniques are limited to library dependency …
models and applications. Existing techniques are limited to library dependency …
Demystifying dependency bugs in deep learning stack
Deep learning (DL) applications, built upon a heterogeneous and complex DL stack (eg,
Nvidia GPU, Linux, CUDA driver, Python runtime, and TensorFlow), are subject to software …
Nvidia GPU, Linux, CUDA driver, Python runtime, and TensorFlow), are subject to software …
Exposing library API misuses via mutation analysis
Misuses of library APIs are pervasive and often lead to software crashes and vulnerability
issues. Various static analysis tools have been proposed to detect library API misuses. They …
issues. Various static analysis tools have been proposed to detect library API misuses. They …