Mining BOMs for Improving Supply Chain Efficiency & Resilience
Kate Stewart, Linux Foundation
Abstract: Bill of Materials (BOMs) have been present in the shipping of physical products for decades, but as more modern systems (including AI) have come to rely increasingly on software and data, these elements are now essential to capture as well. Software Bill of Materials (SBOMs) are gaining adoption in industry due to increasing software complexity, emerging regulatory requirements (e.g., FDA, CRA), and the expansion of software’s role in critical systems (automotive, medical, space, industrial, etc.). The sheer scale of SBOM metadata generated, the diverse information needed across the software lifecycle, and the need to leverage this data for various risk analyses (security, license, operational, safety, AI) require robust solutions and different perspectives on this material. This keynote will look at the current challenges in the SBOM landscape in terms of generating and maintaining such data. It will explore the challenges that are there for being able to extract knowledge from the BOM metadata for continuous safety compliance for products that may be leveraging open source components in safety critical domains.
Bio: Kate Stewart is a Senior Director of Strategic Programs at the Linux Foundation. She is responsible for the Open Compliance programs encompassing the SPDX, FOSSology, OpenChain, and other compliance related projects. Kate was one of the founders of SPDX, and is currently the specification lead. Since joining the Linux Foundation, she has also launched collaborations on metrics (CHAOSS), Real-Time Linux and the Zephyr Project. She also supports other key embedded projects, including Yocto. With over 30 years of experience in the software industry, she has held a variety of roles and worked as a developer in Canada, Australia, and the US. During the last 20 years, she has managed software development teams in the US, Canada, UK, India, and China. She received her Master’s in computer science from the University of Waterloo and a Bachelor’s of computer science (co-op program) from the University of Manitoba.
Dates
Mon 28 Apr 2025
Tracks
MSR Catering
MSR Data and Tool Showcase Track
MSR FCA Award
MSR Industry Track
MSR Keynotes
MSR MIP Award
MSR Mining Challenge
MSR Program
MSR Technical Papers
MSR Tutorials
MSR Vision and Reflection
This program is tentative and subject to change.
You're viewing the program in a time zone which is different from your device's time zone change time zone
Mon 28 AprDisplayed time zone: Eastern Time (US & Canada) change
Mon 28 Apr
Displayed time zone: Eastern Time (US & Canada) change
09:00 - 10:30 | |||
09:00 30mDay opening | Official Opening MSR Program | ||
09:30 60mKeynote | Mining BOMs for Improving Supply Chain Efficiency & Resilience MSR Keynotes Kate Stewart Linux Foundation | ||
11:00 - 12:30 | Defects, bugs, and issuesMSR Data and Tool Showcase Track / MSR Technical Papers at 214 Chair(s): Mohammad Hamdaqa Polytechnique Montréal, Minhaz Zibran Idaho State University | ||
11:00 10mTalk | Learning from Mistakes: Understanding Ad-hoc Logs through Analyzing Accidental Commits MSR Technical Papers Yi-Hung Chou University of California, Irvine, Yiyang Min Amazon, April Wang ETH Zürich, James Jones University of California at Irvine Pre-print | ||
11:10 10mTalk | On the calibration of Just-in-time Defect Prediction MSR Technical Papers Xhulja Shahini paluno - University of Duisburg-Essen, Jone Bartel University of Duisburg-Essen, paluno, Klaus Pohl University of Duisburg-Essen, paluno | ||
11:20 10mTalk | An Empirical Study on Leveraging Images in Automated Bug Report Reproduction MSR Technical Papers Dingbang Wang University of Connecticut, Zhaoxu Zhang University of Southern California, Sidong Feng Monash University, William G.J. Halfond University of Southern California, Tingting Yu University of Connecticut | ||
11:30 10mTalk | It’s About Time: An Empirical Study of Date and Time Bugs in Open-Source Python Software MSR Technical Papers Shrey Tiwari Carnegie Mellon University, Serena Chen University of California, San Diego, Alexander Joukov Stony Brook University, Peter Vandervelde University of California, Santa Barbara, Ao Li Carnegie Mellon University, Rohan Padhye Carnegie Mellon University | ||
11:40 10mTalk | Enhancing Just-In-Time Defect Prediction Models with Developer-Centric Features MSR Technical Papers Emanuela Guglielmi University of Molise, Andrea D'Aguanno University of Molise, Rocco Oliveto University of Molise, Simone Scalabrino University of Molise | ||
11:50 10mTalk | Revisiting Defects4J for Fault Localization in Diverse Development Scenarios MSR Technical Papers Md Nakhla Rafi Concordia University, An Ran Chen University of Alberta, Tse-Hsun (Peter) Chen Concordia University, Shaohua Wang Central University of Finance and Economics | ||
12:00 5mTalk | Mining Bug Repositories for Multi-Fault Programs MSR Data and Tool Showcase Track | ||
12:05 5mTalk | HaPy-Bug - Human Annotated Python Bug Resolution Dataset MSR Data and Tool Showcase Track Piotr Przymus Nicolaus Copernicus University in Toruń, Poland, Mikołaj Fejzer Nicolaus Copernicus University in Toruń, Jakub Narębski Nicolaus Copernicus University in Toruń, Radosław Woźniak Nicolaus Copernicus University in Toruń, Łukasz Halada University of Wrocław, Poland, Aleksander Kazecki Nicolaus Copernicus University in Toruń, Mykhailo Molchanov Igor Sikorsky Kyiv Polytechnic Institute, Ukraine, Krzysztof Stencel University of Warsaw | ||
12:10 5mTalk | SPRINT: An Assistant for Issue Report Management MSR Data and Tool Showcase Track Pre-print | ||
11:00 - 12:30 | Security and legal aspectsMSR Industry Track / MSR Data and Tool Showcase Track / MSR Technical Papers at 215 Chair(s): Mohammad Ghafari TU Clausthal, Mohammad Hamdaqa Polytechnique Montréal | ||
11:00 10mTalk | Wolves in the Repository: A Software Engineering Analysis of the XZ Utils Supply Chain Attack MSR Technical Papers | ||
11:10 10mTalk | Software Composition Analysis and Supply Chain Security in Apache Projects: an Empirical Study MSR Technical Papers Sabato Nocera University of Salerno, Sira Vegas Universidad Politecnica de Madrid, Giuseppe Scanniello University of Salerno, Natalia Juristo Universidad Politecnica de Madrid Pre-print | ||
11:20 10mTalk | Good practice versus reality: a landscape analysis of Research Software metadata adoption in European Open Science Clusters MSR Technical Papers | ||
11:30 10mTalk | Towards Security Commit Message Standardization MSR Technical Papers Sofia Reis Instituto Superior Técnico, U. Lisboa & INESC-ID, Rui Abreu INESC-ID; University of Porto, Corina Pasareanu CMU, NASA, KBR | ||
11:40 10mTalk | From Industrial Practices to Academia: Uncovering the Gap in Vulnerability Research and Practice MSR Technical Papers | ||
11:50 5mTalk | Patch Me If You Can—Securing the Linux Kernel MSR Industry Track Gunnar Kudrjavets Amazon Web Services, USA Pre-print | ||
11:55 5mTalk | OSS License Identification at Scale: A Comprehensive Dataset Using World of Code MSR Data and Tool Showcase Track Mahmoud Jahanshahi Research Assistant, University of Tennessee Knoxville, David Reid University of Tennessee, Adam McDaniel University of Tennessee Knoxville, Audris Mockus The University of Tennessee | ||
12:00 5mTalk | SCRUBD: Smart Contracts Reentrancy and Unhandled Exceptions Vulnerability Dataset MSR Data and Tool Showcase Track Chavhan Sujeet Yashavant Indian Institute of Technology, Kanpur, Mitrajsinh Chavda Indian Institute of Technology Kanpur, India, Saurabh Kumar Indian Institute of Technology Hyderabad, India, Amey Karkare IIT Kanpur, Angshuman Karmakar Indian Institute of Technology Kanpur, India Pre-print | ||
12:05 5mTalk | ICVul: A Well-labeled C/C++ Vulnerability Dataset with Comprehensive Metadata and VCCs MSR Data and Tool Showcase Track Chaomeng Lu DistriNet Group-T, KU Leuven, Tianyu Li DistriNet Group-T, KU Leuven, Toon Dehaene KU Leuven, Bert Lagaisse DistriNet Group-T, KU Leuven | ||
12:10 5mTalk | A Dataset of Software Bill of Materials for Evaluating SBOM Consumption Tools MSR Data and Tool Showcase Track Rio Kishimoto Osaka University, Tetsuya Kanda Notre Dame Seishin University, Yuki Manabe The University of Fukuchiyama, Katsuro Inoue Nanzan University, Shi Qiu Toshiba, Yoshiki Higo Osaka University | ||
12:15 5mTalk | Wild SBOMs: a Large-scale Dataset of Software Bills of Materials from Public Code MSR Data and Tool Showcase Track Luis Soeiro LTCI, Télécom Paris, Institut Polytechnique de Paris, Thomas Robert LTCI, Télécom Paris, Institut Polytechnique de Paris, Stefano Zacchiroli Télécom Paris, Polytechnic Institute of Paris Pre-print | ||
12:20 5mTalk | MaLAware: Automating the Comprehension of Malicious Software Behaviours using Large Language Models (LLMs) MSR Data and Tool Showcase Track BIKASH SAHA Indian Institute of Technology Kanpur, Nanda Rani Indian Institute of Technology Kanpur, Sandeep K. Shukla Indian Institute of Technology Kanpur | ||
13:00 - 13:30 | |||
14:00 - 15:30 | MSR 2025 Mining ChallengeMSR Mining Challenge at 215 Chair(s): Joyce El Haddad Université Paris Dauphine - PSL , Damien Jaime Université Paris Nanterre & LIP6, Pascal Poizat Université Paris Nanterre & LIP6 | ||
14:00 4mTalk | Analyzing Dependency Clusters and Security Risks in the Maven Central Repository MSR Mining Challenge | ||
14:04 4mTalk | Chasing the Clock: How Fast Are Vulnerabilities Fixed in the Maven Ecosystem? MSR Mining Challenge Md Fazle Rabbi Idaho State University, Arifa Islam Champa Idaho State University, Rajshakhar Paul Wayne State University, Minhaz F. Zibran Idaho State University | ||
14:08 4mTalk | Decoding Dependency Risks: A Quantitative Study of Vulnerabilities in the Maven Ecosystem MSR Mining Challenge Costain Nachuma Idaho State University, Md Mosharaf Hossan Idaho State University, Asif Kamal Turzo Wayne State University, Minhaz F. Zibran Idaho State University | ||
14:12 4mTalk | Faster Releases, Fewer Risks: A Study on Maven Artifact Vulnerabilities and Lifecycle Management MSR Mining Challenge Md Shafiullah Shafin Rajshahi University of Engineering & Technology (RUET), Md Fazle Rabbi Idaho State University, S. M. Mahedy Hasan Rajshahi University of Engineering & Technology, Minhaz F. Zibran Idaho State University | ||
14:16 4mTalk | Insights into Dependency Maintenance Trends in the Maven Ecosystem MSR Mining Challenge Barisha Chowdhury Rajshahi University of Engineering & Technology, Md Fazle Rabbi Idaho State University, S. M. Mahedy Hasan Rajshahi University of Engineering & Technology, Minhaz F. Zibran Idaho State University | ||
14:20 4mTalk | Insights into Vulnerability Trends in Maven Artifacts: Recurrence, Popularity, and User Behavior MSR Mining Challenge Courtney Bodily Idaho State University, Eric Hill Idaho State University, Andreas Kramer Idaho State University, Leslie Kerby Idaho State University, Minhaz F. Zibran Idaho State University | ||
14:24 4mTalk | Understanding Software Vulnerabilities in the Maven Ecosystem: Patterns, Timelines, and Risks MSR Mining Challenge Md Fazle Rabbi Idaho State University, Rajshakhar Paul Wayne State University, Arifa Islam Champa Idaho State University, Minhaz F. Zibran Idaho State University | ||
14:28 4mTalk | Dependency Update Adoption Patterns in the Maven Software Ecosystem MSR Mining Challenge Baltasar Berretta College of Wooster, Augustus Thomas College of Wooster, Heather Guarnera The College of Wooster | ||
14:32 4mTalk | Analyzing Vulnerability Overestimation in Software Projects MSR Mining Challenge Taha Draoui University of Michigan-Flint, Faten Jebari University of Michigan-Flint, Chawki Ben Slimen University of Michigan-Flint, Munjaap Uppal University of Michigan-Flint, Mohamed Wiem Mkaouer University of Michigan - Flint | ||
14:36 4mTalk | Dependency Dilemmas: A Comparative Study of Independent and Dependent Artifacts in Maven Ecosystem MSR Mining Challenge Mehedi Hasan Shanto Khulna University, Muhammad Asaduzzman University of Windsor, Manishankar Mondal Khulna University, Shaiful Chowdhury University of Manitoba | ||
14:40 4mTalk | Cascading Effects: Analyzing Project Failure Impact in the Maven Central Ecosystem MSR Mining Challenge Mina Shehata Belmont University, Saidmakhmud Makhkamjonoov Belmont University, Mahad Syed Belmont University, Esteban Parra Belmont University | ||
14:45 4mTalk | Do Developers Depend on Deprecated Library Versions? A Mining Study of Log4j MSR Mining Challenge Haruhiko Yoshioka Nara Institute of Science and Technology, Sila Lertbanjongngam Nara Institute of Science and Technology, Masayuki Inaba Nara Institute of Science and Technology, Youmei Fan Nara Institute of Science and Technology, Takashi Nakano Nara Institute of Science and Technology, Kazumasa Shimari Nara Institute of Science and Technology, Raula Gaikovina Kula Osaka University, Kenichi Matsumoto Nara Institute of Science and Technology | ||
14:49 4mTalk | Mining for Lags in Updating Critical Security Threats: A Case Study of Log4j Library MSR Mining Challenge Hidetake Tanaka Nara Institute of Science and Technology, Kazuma Yamasaki Nara Institute of Science and Technology, Momoka Hirose Nara Institute of Science and Technology, Takashi Nakano Nara Institute of Science and Technology, Youmei Fan Nara Institute of Science and Technology, Kazumasa Shimari Nara Institute of Science and Technology, Raula Gaikovina Kula Osaka University, Kenichi Matsumoto Nara Institute of Science and Technology | ||
14:53 4mTalk | On the Evolution of Unused Dependencies in Java Project Releases: An Empirical Study MSR Mining Challenge Nabhan Suwanachote Nara Institute of Science and Technology, Yagut Shakizada Nara Institute of Science and Technology, Yutaro Kashiwa Nara Institute of Science and Technology, Bin Lin Hangzhou Dianzi University, Hajimu Iida Nara Institute of Science and Technology | ||
14:57 4mTalk | Out of Sight, Still at Risk: The Lifecycle of Transitive Vulnerabilities in Maven MSR Mining Challenge Piotr Przymus Nicolaus Copernicus University in Toruń, Poland, Mikołaj Fejzer Nicolaus Copernicus University in Toruń, Jakub Narębski Nicolaus Copernicus University in Toruń, Krzysztof Rykaczewski Nicolaus Copernicus University in Toruń, Poland, Krzysztof Stencel University of Warsaw | ||
15:01 4mTalk | Popularity and Innovation in Maven Central MSR Mining Challenge Nkiru Ede Victoria University of Wellington, Jens Dietrich Victoria University of Wellington, Ulrich Zülicke Victoria University of Wellington | ||
15:05 4mTalk | Software Bills of Materials in Maven Central MSR Mining Challenge Yogya Gamage Universtité de Montréal, Nadia Gonzalez Fernandez Université de Montréal, Martin Monperrus KTH Royal Institute of Technology, Benoit Baudry Université de Montréal | ||
15:09 4mTalk | The Ripple Effect of Vulnerabilities in Maven Central: Prevalence, Propagation, and Mitigation Challenges MSR Mining Challenge | ||
15:13 4mTalk | Tracing Vulnerabilities in Maven: A Study of CVE lifecycles and Dependency Networks MSR Mining Challenge Pre-print | ||
15:17 4mTalk | Understanding Abandonment and Slowdown Dynamics in the Maven Ecosystem MSR Mining Challenge Kazi Amit Hasan Queen's University, Canada, Jerin Yasmin Queen's University, Canada, Huizi Hao Queen's University, Canada, Yuan Tian Queen's University, Kingston, Ontario, Safwat Hassan University of Toronto, Steven Ding Pre-print | ||
15:21 4mTalk | Characterizing Packages for Vulnerability Prediction MSR Mining Challenge Saviour Owolabi University of Calgary, Francesco Rosati University of Calgary, Ahmad Abdellatif University of Calgary, Lorenzo De Carli University of Calgary, Canada | ||
15:25 4mTalk | Understanding the Popularity of Packages in Maven Ecosystem MSR Mining Challenge Sadman Jashim Sakib University of Windsor, Muhammad Asaduzzaman University of Windsor, Curtis Bright University of Windsor, Cole Morgan University of Windsor | ||
16:00 - 17:30 | LLMs for CodeMSR Tutorials / MSR Technical Papers / MSR Data and Tool Showcase Track at 215 Chair(s): Ali Ouni ETS Montreal, University of Quebec, Houari Sahraoui DIRO, Université de Montréal | ||
16:00 10mTalk | How Much Do Code Language Models Remember? An Investigation on Data Extraction Attacks before and after Fine-tuning MSR Technical Papers Fabio Salerno Delft University of Technology, Ali Al-Kaswan Delft University of Technology, Netherlands, Maliheh Izadi Delft University of Technology | ||
16:10 10mTalk | Can LLMs Generate Higher Quality Code Than Humans? An Empirical Study MSR Technical Papers Mohammad Talal Jamil Lahore University of Management Sciences, Shamsa Abid National University of Computer and Emerging Sciences, Shafay Shamail LUMS, DHA, Lahore Pre-print | ||
16:20 10mTalk | Prompt Engineering or Fine-Tuning: An Empirical Assessment of LLMs for Code MSR Technical Papers Jiho Shin York University, Clark Tang , Tahmineh Mohati University of Calgary, Maleknaz Nayebi York University, Song Wang York University, Hadi Hemmati York University | ||
16:30 5mTalk | Drawing Pandas: A Benchmark for LLMs in Generating Plotting Code MSR Data and Tool Showcase Track Timur Galimzyanov JetBrains Research, Sergey Titov JetBrains Research, Yaroslav Golubev JetBrains Research, Egor Bogomolov JetBrains Research Pre-print | ||
16:35 5mTalk | SnipGen: A Mining Repository Framework for Evaluating LLMs for Code MSR Data and Tool Showcase Track | ||
16:50 40mTutorial | Harmonized Coding with AI: LLMs for Qualitative Analysis in Software Engineering Research MSR Tutorials Christoph Treude Singapore Management University, Youmei Fan Nara Institute of Science and Technology, Tao Xiao Kyushu University, Hideaki Hata Shinshu University | ||
17:30 - 22:00 | Dinner at Museum of HistoryMSR Catering / MSR Program / MSR Mining Challenge / MSR Data and Tool Showcase Track / MSR Technical Papers / MSR Keynotes / MSR Industry Track at Grand Hall | ||
18:00 4hDinner | Dinner MSR Catering | ||
Tue 29 AprDisplayed time zone: Eastern Time (US & Canada) change
Tue 29 Apr
Displayed time zone: Eastern Time (US & Canada) change
09:00 - 10:30 | Plenary: MIP + FCAMSR MIP Award / MSR FCA Award / MSR Vision and Reflection at 214 Chair(s): Gabriele Bavota Software Institute @ Università della Svizzera Italiana, Jin L.C. Guo McGill University, Audris Mockus The University of Tennessee, Knoxville / Vilnius University, Martin Pinzger Universität Klagenfurt, Romain Robbes CNRS, LaBRI, University of Bordeaux, Patanamon Thongtanunam The University of Melbourne | ||
09:00 30mAwards | MSR 2025 Most Influential Paper Award MSR MIP Award | ||
09:30 30mAwards | MSR 2025 Foundational Contribution Award MSR FCA Award | ||
10:00 30mTalk | The Standard of Rigor for MSR Research: A 20-Year Evolution MSR Vision and Reflection Bogdan Vasilescu Raj Reddy Associate Professor of Software and Societal Systems, Carnegie Mellon University, USA | ||
11:00 - 12:30 | Software ecosystems and humansMSR Data and Tool Showcase Track / MSR Technical Papers at 214 Chair(s): Ahmad Abdellatif University of Calgary, Mohammad Hamdaqa Polytechnique Montréal | ||
11:00 10mTalk | The Ecosystem of Open-Source Music Production Software – A Mining Study on the Development Practices of VST Plugins on GitHub MSR Technical Papers Andrei Bogdan University of Amsterdam, Mauricio Verano Merino Vrije Universiteit Amsterdam, Ivano Malavolta Vrije Universiteit Amsterdam Pre-print | ||
11:10 10mTalk | Can LLMs Replace Manual Annotation of Software Engineering Artifacts? MSR Technical Papers Toufique Ahmed IBM Research, Prem Devanbu University of California at Davis, Christoph Treude Singapore Management University, Michael Pradel University of Stuttgart Pre-print | ||
11:20 10mTalk | Investigating the Understandability of Review Comments on Code Change Requests MSR Technical Papers Md Shamimur Rahman University of Saskatchewan, Canada, Zadia Codabux University of Saskatchewan, Chanchal K. Roy University of Saskatchewan, Canada | ||
11:30 10mTalk | Mining a Decade of Contributor Dynamics in Ethereum: A Longitudinal Study MSR Technical Papers Matteo Vaccargiu University of Cagliari, Sabrina Aufiero University College London (UCL), Cheick Ba Queen Mary University of London, Silvia Bartolucci University College London, Richard Clegg Queen Mary University London, Daniel Graziotin University of Hohenheim, Rumyana Neykova Brunel University London, Roberto Tonelli University of Cagliari, Giuseppe Destefanis Brunel University London Pre-print | ||
11:40 10mTalk | Is it Really Fun? Detecting Low Engagement Events in Video Games MSR Technical Papers Emanuela Guglielmi University of Molise, Gabriele Bavota Software Institute @ Università della Svizzera Italiana, Nicole Novielli University of Bari, Rocco Oliveto University of Molise, Simone Scalabrino University of Molise | ||
11:50 5mTalk | A Dataset of Contributor Activities in the NumFocus Open-Source Community MSR Data and Tool Showcase Track Youness Hourri University of Mons, Alexandre Decan University of Mons; F.R.S.-FNRS, Tom Mens University of Mons Pre-print | ||
11:55 5mTalk | Jupyter Notebook Activity Dataset MSR Data and Tool Showcase Track Tomoki Nakamaru The University of Tokyo, Tomomasa Matsunaga The University of Tokyo, Tetsuro Yamazaki University of Tokyo | ||
12:00 5mTalk | CoPhi - Mining C/C++ Packages for Conan Ecosystem Analysis MSR Data and Tool Showcase Track Pre-print | ||
12:05 5mTalk | MARIN: A Research-Centric Interface for Querying Software Artifacts on Maven Repositories MSR Data and Tool Showcase Track Pre-print | ||
12:10 5mTalk | GitProjectHealth: an Extensible Framework for Git Social Platform Mining MSR Data and Tool Showcase Track | ||
12:15 5mTalk | Myriad People. Open Source Software for New Media Arts MSR Data and Tool Showcase Track Benoit Baudry Université de Montréal, Erik Natanael Gustafsson Independent artist, Roni Kaufman Independent artist, Maria Kling Independent artist Pre-print | ||
12:20 5mTalk | OpenMent: A Dataset of Mentor-Mentee Interactions in Google Summer of Code MSR Data and Tool Showcase Track Erfan Raoofian University of British Columbia, Fatemeh Hendijani Fard University of British Columbia, Ifeoma Adaji University of British Columbia, Gema Rodríguez-Pérez University of British Columbia (UBC) | ||
12:25 5mTalk | Under the Blueprints: Parsing Unreal Engine’s Visual Scripting at Scale MSR Data and Tool Showcase Track | ||
11:00 - 12:30 | Build systems and DevOpsMSR Data and Tool Showcase Track / MSR Technical Papers / MSR Tutorials at 215 Chair(s): Massimiliano Di Penta University of Sannio, Italy, Sarah Nadi New York University Abu Dhabi | ||
11:00 7mTalk | Build Scripts Need Maintenance Too: A Study on Refactoring and Technical Debt in Build Systems MSR Technical Papers Anwar Ghammam Oakland University, Dhia Elhaq Rzig University of Michigan - Dearborn, Mohamed Almukhtar Oakland University, Rania Khalsi University of Michigan - Flint, Foyzul Hassan University of Michigan at Dearborn, Marouane Kessentini Grand Valley State University | ||
11:07 7mTalk | LLMSecConfig: An LLM-Based Approach for Fixing Software Container Misconfigurations MSR Technical Papers Ziyang Ye The University of Adelaide, Triet Le The University of Adelaide, Muhammad Ali Babar School of Computer Science, The University of Adelaide Pre-print | ||
11:14 7mTalk | How Do Infrastructure-as-Code Practitioners Update Their Dependencies? An Empirical Study on Terraform Module Updates MSR Technical Papers Mahi Begoug , Ali Ouni ETS Montreal, University of Quebec, Moataz Chouchen Department of Electrical and Computer Engineering, Concordia University, Montreal, Canada | ||
11:21 7mTalk | TerraDS: A Dataset for Terraform HCL Programs MSR Data and Tool Showcase Track Christoph Buehler University of St. Gallen, David Spielmann University of St. Gallen, Roland Meier armasuisse, Guido Salvaneschi University of St. Gallen Pre-print | ||
11:28 7mTalk | OSPtrack: A Labeled Dataset Targeting Simulated Execution of Open-Source Software MSR Data and Tool Showcase Track Zhuoran Tan University of Glasgow, Christos Anagnostopoulos University of Glasgow, Jeremy Singer University of Glasgow | ||
11:35 7mTalk | CARDS: A collection of package, revision, and miscelleneous dependency graphs MSR Data and Tool Showcase Track Euxane TRAN-GIRARD LIGM, CNRS, Université Gustave Eiffel, Laurent BULTEAU LIGM, CNRS, Université Gustave Eiffel, Pierre-Yves DAVID Octobus S.c.o.p. Pre-print | ||
11:42 7mTalk | GHALogs: Large-scale dataset of GitHub Actions runs MSR Data and Tool Showcase Track Florent Moriconi EURECOM, AMADEUS, Thomas Durieux TU Delft, Jean-Rémy Falleri Bordeaux INP, Raphaël Troncy EURECOM, Aurélien Francillon EURECOM | ||
11:50 40mTutorial | Agents for Software Development MSR Tutorials Graham Neubig Carnegie Mellon University | ||
14:00 - 15:30 | AI for SE (2)MSR Technical Papers / MSR Industry Track / MSR Data and Tool Showcase Track at 214 Chair(s): Giuseppe Destefanis Brunel University London, Mohammad Hamdaqa Polytechnique Montréal | ||
14:00 10mTalk | Automatic High-Level Test Case Generation using Large Language Models MSR Technical Papers Navid Bin Hasan Bangladesh University of Engineering and Technology, Md. Ashraful Islam Bangladesh University of Engineering and Technology, Junaed Younus Khan Bangladesh University of Engineering and Technology, Sanjida Senjik Bangladesh University of Engineering and Technology, Anindya Iqbal Bangladesh University of Engineering and Technology Dhaka, Bangladesh | ||
14:10 10mTalk | Prompting in the Wild: An Empirical Study of Prompt Evolution in Software Repositories MSR Technical Papers Mahan Tafreshipour University of California at Irvine, Aaron Imani University of California, Irvine, Eric Huang University of California, Irvine, Eduardo Santana de Almeida Federal University of Bahia, Thomas Zimmermann University of California, Irvine, Iftekhar Ahmed University of California at Irvine Pre-print | ||
14:20 10mTalk | Towards Detecting Prompt Knowledge Gaps for Improved LLM-guided Issue Resolution MSR Technical Papers Ramtin Ehsani Drexel University, Sakshi Pathak Drexel University, Preetha Chatterjee Drexel University, USA Pre-print | ||
14:30 10mTalk | Intelligent Semantic Matching (ISM) for Video Tutorial Search using Transformer Models MSR Technical Papers | ||
14:40 10mTalk | Language Models in Software Development Tasks: An Experimental Analysis of Energy and Accuracy MSR Technical Papers Negar Alizadeh Universiteit Utrecht, Boris Belchev University of Twente, Nishant Saurabh Utrecht University, Patricia Kelbert Fraunhofer IESE, Fernando Castor University of Twente | ||
14:50 10mTalk | TriGraph: A Probabilistic Subgraph-Based Model for Visual Code Completion in Pure Data MSR Technical Papers Anisha Islam Department of Computing Science, University of Alberta, Abram Hindle University of Alberta | ||
15:00 5mTalk | Inferring Questions from Programming Screenshots MSR Technical Papers Faiz Ahmed York University, Xuchen Tan York University, Folajinmi Adewole York University, Suprakash Datta York University, Maleknaz Nayebi York University | ||
15:05 5mTalk | Human-In-The-Loop Software Development Agents: Challenges and Future Directions MSR Industry Track Jirat Pasuksmit Atlassian, Wannita Takerngsaksiri Monash University, Patanamon Thongtanunam University of Melbourne, Kla Tantithamthavorn Monash University, Ruixiong Zhang Atlassian, Shiyan Wang Atlassian, Fan Jiang Atlassian, Jing Li Atlassian, Evan Cook Atlassian, Kun Chen Atlassian, Ming Wu Atlassian | ||
15:10 5mTalk | FormalSpecCpp: A Dataset of C++ Formal Specifications Created Using LLMs MSR Data and Tool Showcase Track Madhurima Chakraborty University of California, Riverside, Peter Pirkelbauer Lawrence Livermore National Laboratory, Qing Yi Lawrence Livermore National Laboratory | ||
14:00 - 15:30 | Software qualityMSR Technical Papers / MSR Data and Tool Showcase Track at 215 Chair(s): Mohammad Hamdaqa Polytechnique Montréal, Ying Zou Queen's University, Kingston, Ontario | ||
14:00 10mTalk | PyExamine: A Comprehensive, Un-Opinionated Smell Detection Tool for Python MSR Technical Papers | ||
14:10 10mTalk | Does Functional Package Management Enable Reproducible Builds at Scale? Yes. MSR Technical Papers Julien Malka LTCI, Télécom Paris, Institut Polytechnique de Paris, France, Stefano Zacchiroli Télécom Paris, Polytechnic Institute of Paris, Théo Zimmermann Télécom Paris, Polytechnic Institute of Paris Pre-print | ||
14:20 10mTalk | Refactoring for Dockerfile Quality: A Dive into Developer Practices and Automation Potential MSR Technical Papers Emna Ksontini University of Michigan - Dearborn, Meriem Mastouri University of Michigan, Rania Khalsi University of Michigan - Flint, Wael Kessentini DePaul University | ||
14:30 10mTalk | Smells-sus: Sustainability Smells in IaC MSR Technical Papers | ||
14:40 10mTalk | Evidence is All We Need: Do Self-Admitted Technical Debts Impact Method-Level Maintenance? MSR Technical Papers Shaiful Chowdhury University of Manitoba, Hisham Kidwai University of Manitoba, Muhammad Asaduzzman University of Windsor | ||
14:50 5mTalk | DPy: Code Smells Detection Tool for Python MSR Data and Tool Showcase Track Pre-print | ||
14:55 5mTalk | CoMRAT: Commit Message Rationale Analysis Tool MSR Data and Tool Showcase Track Mouna Dhaouadi University of Montreal, Bentley Oakes Polytechnique Montréal, Michalis Famelis Université de Montréal Media Attached | ||
15:00 5mTalk | E2EGit: A Dataset of End-to-End Web Tests in Open Source Projects MSR Data and Tool Showcase Track Sergio Di Meglio Università degli Studi di Napoli Federico II, Luigi Libero Lucio Starace Università degli Studi di Napoli Federico II, Valeria Pontillo Vrije Universiteit Brussel, Ruben Opdebeeck Vrije Universiteit Brussel, Coen De Roover Vrije Universiteit Brussel, Sergio Di Martino Università degli Studi di Napoli Federico II | ||
15:05 5mTalk | TestMigrationsInPy: A Dataset of Test Migrations from Unittest to Pytest MSR Data and Tool Showcase Track Pre-print | ||
15:10 5mTalk | pyMethods2Test: A Dataset of Python Tests Mapped to Focal Methods MSR Data and Tool Showcase Track Pre-print | ||
15:15 5mTalk | DataTD: A Dataset of Java Projects Including Test Doubles MSR Data and Tool Showcase Track | ||
15:20 5mTalk | JPerfEvo: A Tool for Tracking Method-Level Performance Changes in Java Projects MSR Data and Tool Showcase Track Kaveh Shahedi Polytechnique Montréal, Maxime Lamothe Polytechnique Montreal, Foutse Khomh Polytechnique Montréal, Heng Li Polytechnique Montréal | ||
16:00 - 17:30 | Plenary: ClosingMSR Program / MSR Vision and Reflection at 214 Chair(s): Gabriele Bavota Software Institute @ Università della Svizzera Italiana, Jin L.C. Guo McGill University | ||
16:00 30mTalk | Future of AI4SE: From Code Generation to Software Engineering? MSR Vision and Reflection Baishakhi Ray Columbia University, New York; | ||
16:30 30mTalk | Reshaping MSR (and SE) empirical evaluations in 2030 MSR Vision and Reflection Massimiliano Di Penta University of Sannio, Italy | ||
17:00 15mDay closing | Closing Session MSR Program Bram Adams Queen's University, Olga Baysal Carleton University, Ayushi Rastogi University of Groningen, The Netherlands | ||
17:15 15mDay closing | MSR 2026 Presentation MSR Program | ||
Accepted Papers
| Title | |
|---|---|
| Mining BOMs for Improving Supply Chain Efficiency & Resilience MSR Keynotes |
xFri 28 Mar 18:52