@article{Nocera:Jss:2025, title = {Software engineering education: Results from a training intervention based on SonarCloud when developing web apps}, author = {Sabato Nocera and Simone Romano and Rita Francese and Giuseppe Scanniello}, journal = {Journal of Systems and Software}, volume = {222}, pages = {112308}, year = {2025}, doi = {https://doi.org/10.1016/j.jss.2024.112308}, url = {https://www.sciencedirect.com/science/article/pii/S0164121224003522}, publisher={Elsevier} }
@inproceedings{Nocera:Msr:2025, title={Software Composition Analysis and Supply Chain Security in Apache Projects: an Empirical Study}, author={Sabato Nocera and Sira Vegas and Giuseppe Scanniello and Natalia Juristo}, booktitle={Proceedings of International Conference on Mining Software Repositories}, pages={}, year={2025}, publisher={IEEE} }
[C10] Scanniello, G., Di Penta, M., Romano, S., Francese, R., Nocera, S., Cassieri, P., Bifolco, D., & Zampetti, F. (2024, October). MSR4SBOM: Mining software repositories for enhanced software bills of materials. In Proceedings of the 18th ACM/IEEE International Symposium on Empirical Software Engineering and Measurement (ESEM) (pp. 589-593). ACM.
@inproceedings{Scanniello:Esem:2024, author = {Scanniello, Giuseppe and Di Penta, Massimiliano and Romano, Simone and Francese, Rita and Nocera, Sabato and Cassieri, Pietro and Bifolco, Daniele and Zampetti, Fiorella}, title = {MSR4SBOM: Mining Software Repositories for enhanced Software Bills of Materials}, year = {2024}, publisher = {Association for Computing Machinery}, address = {New York, NY, USA}, url = {https://doi.org/10.1145/3674805.3695390}, doi = {10.1145/3674805.3695390}, booktitle = {Proceedings of the 18th ACM/IEEE International Symposium on Empirical Software Engineering and Measurement}, pages = {589–593}, location = {Barcelona, Spain}, series = {ESEM '24} }
@inproceedings{Quatic:Icsme:2024, author={Nocera, Sabato and Di Penta, Massimiliano and Francese, Rita and Romano, Simone and Scanniello, Giuseppe}, booktitle={2024 IEEE International Conference on Software Maintenance and Evolution (ICSME)}, title={If it's not SBOM, then what? How Italian Practitioners Manage the Software Supply Chain}, year={2024}, pages={730-740}, publisher={IEEE}, url = {https://doi.org/10.1109/ICSME58944.2024.00077}, doi={10.1109/ICSME58944.2024.00077}}
@inproceedings{Quatic:Ease:2024, author={Nocera, Sabato and Romano, Simone and Di Nucci, Dario and Francese, Rita and Palomba, Fabio and Scanniello, Giuseppe}, title={Do Static Analysis Tools Improve Awareness and Attitude Toward Secure Software Development?}, booktitle={International Conference on the Quality of Information and Communications Technology}, year={2024}, publisher={Springer Nature Switzerland}, address={Cham}, pages={399-407}, url = {https://doi.org/10.1007/978-3-031-70245-7_28}, doi = {10.1007/978-3-031-70245-7_28} }
[C7] Bifolco, D., Nocera, S., Romano, S., Di Penta, M., Francese, R., & Scanniello, G. (2024, June). On the Accuracy of GitHub’s Dependency Graph. In Proceedings of the 28th International Conference on Evaluation and Assessment in Software Engineering (EASE) (pp. 242-251). ACM.
@inproceedings{Bifolco:Ease:2024, author = {Bifolco, Daniele and Nocera, Sabato and Romano, Simone and Di Penta, Massimiliano and Francese, Rita and Scanniello, Giuseppe}, title = {On the Accuracy of GitHub's Dependency Graph}, year = {2024}, publisher = {Association for Computing Machinery}, address = {New York, NY, USA}, url = {https://doi.org/10.1145/3661167.3661175}, doi = {10.1145/3661167.3661175}, pages = {242–251}, location = {Salerno, Italy}, series = {EASE '24} }
@inproceedings{Nocera:IcseSet:2024, author = {Nocera, Sabato and Romano, Simone and Francese, Rita and Scanniello, Giuseppe}, title = {Training for Security: Results from Using a Static Analysis Tool in the Development Pipeline of Web Apps}, year = {2024}, publisher = {Association for Computing Machinery}, address = {New York, NY, USA}, url = {https://doi.org/10.1145/3639474.3640073}, doi = {10.1145/3639474.3640073}, booktitle = {Proceedings of the 46th International Conference on Software Engineering: Software Engineering Education and Training}, pages = {253–263}, location = {Lisbon, Portugal}, series = {ICSE-SEET '24} }
[C5] Nocera, S., Romano, S., Di Penta, M., Francese, R., & Scanniello, G. (2023, October). Software bill of materials adoption: a mining study from GitHub. In 2023 IEEE International Conference on Software Maintenance and Evolution (ICSME) (pp. 39-49). IEEE.
@inproceedings{Nocera:Icsme:2023, author={Nocera, Sabato and Romano, Simone and Penta, Massimiliano Di and Francese, Rita and Scanniello, Giuseppe}, booktitle={2023 IEEE International Conference on Software Maintenance and Evolution (ICSME)}, title={Software Bill of Materials Adoption: A Mining Study from GitHub}, year={2023}, publisher={IEEE}, pages={39-49}, url = {https://doi.org/10.1109/ICSME58846.2023.00016}, doi={10.1109/ICSME58846.2023.00016}}
@inproceedings{Nocera:SeaaSm:2023, author={Nocera, Sabato and Romano, Simone and Francese, Rita and Scanniello, Giuseppe}, booktitle={2023 49th Euromicro Conference on Software Engineering and Advanced Applications (SEAA)}, title={A Large-scale Fine-grained Empirical Study on Security Concerns in Open-source Software}, year={2023}, pages={418-425}, publisher={IEEE}, url = {https://doi.org/10.1109/SEAA60479.2023.00069}, doi={10.1109/SEAA60479.2023.00069}}
[C3] Nocera, S., Romano, S., Francese, R., Burlon, R., & Scanniello, G. (2023, September). Managing Vulnerabilities in Software Projects: the Case of NTT Data. In 2023 49th Euromicro Conference on Software Engineering and Advanced Applications (SEAA) (pp. 247-253). IEEE.
@inproceedings{Nocera:SeaaSm:2023, author={Nocera, Sabato and Romano, Simone and Francese, Rita and Burlon, Riccardo and Scanniello, Giuseppe}, booktitle={2023 49th Euromicro Conference on Software Engineering and Advanced Applications (SEAA)}, title={Managing Vulnerabilities in Software Projects: the Case of NTT Data}, year={2023}, pages={247-253}, publisher={IEEE}, url = {https://doi.org/10.1109/SEAA60479.2023.00046}, doi={10.1109/SEAA60479.2023.00046}}
@inproceedings{Nocera:Ease:2023, author = {Nocera, Sabato and Francese, Rita and Scanniello, Giuseppe}, title = {Training Bachelor Students to Design Better Quality Web Apps: Preliminary Results from a Prospective Empirical Investigation}, year = {2023}, publisher = {Association for Computing Machinery}, address = {New York, NY, USA}, url = {https://doi.org/10.1145/3593434.3593957}, doi = {10.1145/3593434.3593957}, booktitle = {Proceedings of the 27th International Conference on Evaluation and Assessment in Software Engineering}, pages = {465–469}, location = {Oulu, Finland}, series = {EASE '23}}
@inproceedings{Nocera:IcseSeet:2023, author={Nocera, Sabato and Romano, Simone and Francese, Rita and Scanniello, Giuseppe}, booktitle={2023 IEEE/ACM 45th International Conference on Software Engineering: Software Engineering Education and Training (ICSE-SEET)}, title={Training for Security: Planning the Use of a SAT in the Development Pipeline of Web Apps}, year={2023}, pages={40-45}, publisher={IEEE}, url = {https://doi.org/10.1109/ICSE-SEET58685.2023.00010}, doi={10.1109/ICSE-SEET58685.2023.00010}}
