Security in Cloud-Native Services: A Survey
Cloud-native services face unique cybersecurity challenges due to their distributed
infrastructure. They are susceptible to various threats like malware, DDoS attacks, and Man …
infrastructure. They are susceptible to various threats like malware, DDoS attacks, and Man …
[HTML][HTML] The do's and don'ts of infrastructure code: A systematic gray literature review
Abstract Context: Infrastructure-as-code (IaC) is the DevOps tactic of managing and
provisioning software infrastructures through machine-readable definition files, rather than …
provisioning software infrastructures through machine-readable definition files, rather than …
The seven sins: Security smells in infrastructure as code scripts
Practitioners use infrastructure as code (IaC) scripts to provision servers and development
environments. While develo** IaC scripts, practitioners may inadvertently introduce …
environments. While develo** IaC scripts, practitioners may inadvertently introduce …
Adoption, support, and challenges of infrastructure-as-code: Insights from industry
Infrastructure-as-code (IaC) is the DevOps tactic of managing and provisioning infrastructure
through machine-readable definition files, rather than physical hardware configuration or …
through machine-readable definition files, rather than physical hardware configuration or …
Within-project defect prediction of infrastructure-as-code using product and process metrics
Infrastructure-as-code (IaC) is the DevOps practice enabling management and provisioning
of infrastructure through the definition of machine-readable files, hereinafter referred to as …
of infrastructure through the definition of machine-readable files, hereinafter referred to as …
Understanding privacy-related questions on stack overflow
We analyse Stack Overflow (SO) to understand challenges and confusions developers face
while dealing with privacy-related topics. We apply topic modelling techniques to 1,733 …
while dealing with privacy-related topics. We apply topic modelling techniques to 1,733 …
An empirical study of c++ vulnerabilities in crowd-sourced code examples
Software developers share programming solutions in Q&A sites like Stack Overflow, Stack
Exchange, Android forum, and so on. The reuse of crowd-sourced code snippets can …
Exchange, Android forum, and so on. The reuse of crowd-sourced code snippets can …
Gang of eight: A defect taxonomy for infrastructure as code scripts
Defects in infrastructure as code (IaC) scripts can have serious consequences, for example,
creating large-scale system outages. A taxonomy of IaC defects can be useful for …
creating large-scale system outages. A taxonomy of IaC defects can be useful for …
Api-related developer information needs in stack overflow
Stack Overflow (SO) provides informal documentation for APIs in response to questions that
express API related developer needs. Navigating the information available on SO and …
express API related developer needs. Navigating the information available on SO and …
Source code properties of defective infrastructure as code scripts
Context In continuous deployment, software and services are rapidly deployed to end-users
using an automated deployment pipeline. Defects in infrastructure as code (IaC) scripts can …
using an automated deployment pipeline. Defects in infrastructure as code (IaC) scripts can …