Publications

IDAuthorsTitleVenueAcronymPublisherYearDOI
J1Nocera, S., Romano, S., Francese, R., & Scanniello, G.Software engineering education: Results from a training intervention based on SonarCloud when developing web appsJournal of Systems and SoftwareJSSElsevier202510.1016/j.jss.2024.112308Publication
C11Nocera, S., Vegas, S., Scanniello, G., & Juristo, N.Software Composition Analysis and Supply Chain Security in Apache Projects: an Empirical StudyInternational Conference on Mining Software RepositoriesMSRIEEE2025 Pre-print
C10Scanniello, G., Di Penta, M., Romano, S., Francese, R., Nocera, S., Cassieri, P., Bifolco, D., & Zampetti, F.MSR4SBOM: Mining software repositories for enhanced software bills of materialsInternational Symposium on Empirical Software Engineering and MeasurementESEMACM202410.1145/3674805.3695390Publication
C9Nocera, S., Di Penta, M., Francese, R., Romano, S., & Scanniello, G.If it’s not SBOM, then what? How Italian Practitioners Manage the Software Supply ChainInternational Conference on Software Maintenance and EvolutionICSMEIEEE202410.1109/ICSME58944.2024.00077Publication
C8Nocera, S., Romano, S., Di Nucci, D., Francese, R., Palomba, F., & Scanniello, G.Do Static Analysis Tools Improve Awareness and Attitude Toward Secure Software Development?International Conference on the Quality of Information and Communications TechnologyQUATICSpringer202410.1007/978-3-031-70245-7_28Publication
C7Bifolco, D., Nocera, S., Romano, S., Di Penta, M., Francese, R., & Scanniello, G.On the Accuracy of GitHub’s Dependency GraphInternational Conference on Evaluation and Assessment in Software EngineeringEASEACM202410.1145/3661167.3661175Publication
C6Nocera, S., Romano, S., Francese, R., & Scanniello, G.Training for Security: Results from Using a Static Analysis Tool in the Development Pipeline of Web AppsInternational Conference on Software Engineering: Software Engineering Education and TrainingICSE‑SEETACM202410.1145/3639474.3640073Publication
C5Nocera, S., Romano, S., Di Penta, M., Francese, R., & Scanniello, G.Software bill of materials adoption: a mining study from GitHubInternational Conference on Software Maintenance and EvolutionICSMEIEEE202310.1109/ICSME58846.2023.00016Publication
C4Nocera, S., Romano, S., Francese, R., & Scanniello, G.A large‑scale fine‑grained empirical study on security concerns in open‑source softwareEuromicro Conference on Software Engineering and Advanced ApplicationsSEAAIEEE202310.1109/SEAA60479.2023.00069Publication
C3Nocera, S., Romano, S., Francese, R., Burlon, R., & Scanniello, G.Managing Vulnerabilities in Software Projects: the Case of NTT DataEuromicro Conference on Software Engineering and Advanced ApplicationsSEAAIEEE202310.1109/SEAA60479.2023.00046Publication
C2Nocera, S., Francese, R., & Scanniello, G.Training Bachelor Students to Design Better Quality Web Apps: Preliminary Results from a Prospective Empirical InvestigationInternational Conference on Evaluation and Assessment in Software EngineeringEASEACM202310.1145/3593434.3593957Publication
C1Nocera, S., Romano, S., Francese, R., & Scanniello, G.Training for security: planning the use of a SAT in the development pipeline of web AppsInternational Conference on Software Engineering: Software Engineering Education and TrainingICSE‑SEETIEEE202310.1109/ICSE-SEET58685.2023.00010Pre-print