Publications

Articles

International Journal Articles: 2

2023

- Sofia Reis and Rui Abreu, A Systematic Literature Review of Static Application Security Testing Tools, article in , to appear on 2023 [bibTex]

2021

- Sofia Reis and Rui Abreu and Luís Cruz, Fixing vulnerabilities potentially hinders maintainability, article in Empirical Software Engineering, to appear on 2021, Springer [bibTex] [PDF]

International Conferences: 11

2023

- Sofia Reis and Rui Abreu and Corina Pasareanu, Are security commit messages informative? Not enough!, presented at International Conference on Evaluation and Assessment in Software Engineering, to appear on 2023 [bibTex]
- Sofia Reis and Hakan Erdogmus and Rui Abreu and Corina Pasareanu, Best Practices when Writing Security Commit Messages: Are we there yet?, to appear on 2023 [bibTex]
- Sofia Reis and Corina Pasareanu and Rui Abreu and Hakan Erdogmus, SECOMlint: A linter for Security Commit Messages, to appear on 2023 [bibTex] [PDF] [Video]
- Eduard Pinconschi and Sofia Reis and Chi Zhang and Rui Abreu and Hakan Erdogmus and Corina Pasareanu and Limin Jia, Tenet: A Flexible Framework for Machine-Learning-based Vulnerability Detection, presented at International Conference on AI Engineering (CAIN) – Software Engineering for AI (Co-located with the International Conference in Software Engineering), to appear on 2023 [bibTex] [PDF]

2022

- Miguel Trinca and João F. Ferreira and Rui Abreu, A Preliminary Study on Generating Well-Formed Q# Quantum Programs for Fuzz Testing, presented at 2nd International Workshop on Artificial Intelligence in Software Testing (AIST'22), to appear on 2022 [bibTex] [PDF]
- Ricardo Pereira and João F. Ferreira and Alexandra Mendes and Rui Abreu, Extending EcoAndroid with Automated Detection of Resource Leaks, presented at 9th IEEE/ACM International Conference on Mobile Software Engineering and Systems 2022, to appear on 2022 [bibTex]
- Sofia Reis and Rui Abreu and Hakan Erdogmus and Corina Pasareanu, SECOM: Towards a convention for security commit messages, presented at International Conference on Mining Software Repositories (MSR), to appear on 2022 [DOI Article link] [bibTex] [PDF]
- Sofia Reis and Rui Abreu and Marcelo D'Amorim and Daniel Antunes Bustorff Fortunato, Leveraging Practitioners’ Feedback to Improve a Security Linter, presented at 37th IEEE/ACM International Conference on Automated Software Engineering, Nov. 2022 [bibTex] [PDF]

2021

- Sofia Reis and Rui Abreu, A ground-truth dataset of real security patches, to appear on 2021 [bibTex]
- David Ferreira Coimbra and Sofia Reis and Rui Abreu and Corina Pasareanu and Hakan Erdogmus, On using distributed representations of source code for the detection of C security vulnerabilities, presented at International Workshop on Principles of Diagnosis, to appear on 2021 [bibTex] [PDF]
- Ricardo Martins and Rui Abreu and Manuel Lopes and João Nadkarni, Supervised Learning for Test Suit Selection in Continuous Integration, presented at 2021 IEEE International Conference on Software Testing, Verification and Validation Workshops (ICSTW), to appear on 2021 [DOI Article link] [bibTex]