J1 | Nocera, S., Romano, S., Francese, R., & Scanniello, G. | Software engineering education: Results from a training intervention based on SonarCloud when developing web apps | Journal of Systems and Software | JSS | Elsevier | 2025 | 10.1016/j.jss.2024.112308 | Publication |
C11 | Nocera, S., Vegas, S., Scanniello, G., & Juristo, N. | Software Composition Analysis and Supply Chain Security in Apache Projects: an Empirical Study | International Conference on Mining Software Repositories | MSR | IEEE | 2025 | | Pre-print |
C10 | Scanniello, G., Di Penta, M., Romano, S., Francese, R., Nocera, S., Cassieri, P., Bifolco, D., & Zampetti, F. | MSR4SBOM: Mining software repositories for enhanced software bills of materials | International Symposium on Empirical Software Engineering and Measurement | ESEM | ACM | 2024 | 10.1145/3674805.3695390 | Publication |
C9 | Nocera, S., Di Penta, M., Francese, R., Romano, S., & Scanniello, G. | If it’s not SBOM, then what? How Italian Practitioners Manage the Software Supply Chain | International Conference on Software Maintenance and Evolution | ICSME | IEEE | 2024 | 10.1109/ICSME58944.2024.00077 | Publication |
C8 | Nocera, S., Romano, S., Di Nucci, D., Francese, R., Palomba, F., & Scanniello, G. | Do Static Analysis Tools Improve Awareness and Attitude Toward Secure Software Development? | International Conference on the Quality of Information and Communications Technology | QUATIC | Springer | 2024 | 10.1007/978-3-031-70245-7_28 | Publication |
C7 | Bifolco, D., Nocera, S., Romano, S., Di Penta, M., Francese, R., & Scanniello, G. | On the Accuracy of GitHub’s Dependency Graph | International Conference on Evaluation and Assessment in Software Engineering | EASE | ACM | 2024 | 10.1145/3661167.3661175 | Publication |
C6 | Nocera, S., Romano, S., Francese, R., & Scanniello, G. | Training for Security: Results from Using a Static Analysis Tool in the Development Pipeline of Web Apps | International Conference on Software Engineering: Software Engineering Education and Training | ICSE‑SEET | ACM | 2024 | 10.1145/3639474.3640073 | Publication |
C5 | Nocera, S., Romano, S., Di Penta, M., Francese, R., & Scanniello, G. | Software bill of materials adoption: a mining study from GitHub | International Conference on Software Maintenance and Evolution | ICSME | IEEE | 2023 | 10.1109/ICSME58846.2023.00016 | Publication |
C4 | Nocera, S., Romano, S., Francese, R., & Scanniello, G. | A large‑scale fine‑grained empirical study on security concerns in open‑source software | Euromicro Conference on Software Engineering and Advanced Applications | SEAA | IEEE | 2023 | 10.1109/SEAA60479.2023.00069 | Publication |
C3 | Nocera, S., Romano, S., Francese, R., Burlon, R., & Scanniello, G. | Managing Vulnerabilities in Software Projects: the Case of NTT Data | Euromicro Conference on Software Engineering and Advanced Applications | SEAA | IEEE | 2023 | 10.1109/SEAA60479.2023.00046 | Publication |
C2 | Nocera, S., Francese, R., & Scanniello, G. | Training Bachelor Students to Design Better Quality Web Apps: Preliminary Results from a Prospective Empirical Investigation | International Conference on Evaluation and Assessment in Software Engineering | EASE | ACM | 2023 | 10.1145/3593434.3593957 | Publication |
C1 | Nocera, S., Romano, S., Francese, R., & Scanniello, G. | Training for security: planning the use of a SAT in the development pipeline of web Apps | International Conference on Software Engineering: Software Engineering Education and Training | ICSE‑SEET | IEEE | 2023 | 10.1109/ICSE-SEET58685.2023.00010 | Pre-print |