2021 journal article
Different Kind of Smells: Security Smells in Infrastructure as Code Scripts
IEEE SECURITY & PRIVACY, 19(3), 33β41.
2021 journal article
Security Smells in Ansible and Chef Scripts: A Replication Study
ACM TRANSACTIONS ON SOFTWARE ENGINEERING AND METHODOLOGY, 30(1).
2020 article
Gang of Eight: A Defect Taxonomy for Infrastructure as Code Scripts
2020 ACM/IEEE 42ND INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING (ICSE 2020), pp. 752β764.
2020 journal article
The 'as code' activities: development anti-patterns for infrastructure as code
EMPIRICAL SOFTWARE ENGINEERING, 25(5), 3430β3467.
2019 journal article
A systematic mapping study of infrastructure as code research
INFORMATION AND SOFTWARE TECHNOLOGY, 108, 65β77.
2019 article
Blockchain Enabled AI Marketplace: The Price You Pay For Trust
2019 IEEE/CVF CONFERENCE ON COMPUTER VISION AND PATTERN RECOGNITION WORKSHOPS (CVPRW 2019), pp. 2857β2866.
2019 article
Share, But Be Aware: Security Smells in Python Gists
2019 IEEE INTERNATIONAL CONFERENCE ON SOFTWARE MAINTENANCE AND EVOLUTION (ICSME 2019), pp. 536β540.
2019 journal article
Source code properties of defective infrastructure as code scripts
INFORMATION AND SOFTWARE TECHNOLOGY, 112, 148β163.
2019 article
The Seven Sins: Security Smells in Infrastructure as Code Scripts
2019 IEEE/ACM 41ST INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING (ICSE 2019), pp. 164β175.
2018 article
Characteristics of Defective Infrastructure as Code Scripts in DevOps
PROCEEDINGS 2018 IEEE/ACM 40TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING - COMPANION (ICSE-COMPANION, pp. 476β479.
2018 article
Characterizing the Influence of Continuous Integration
PROCEEDINGS OF THE 4TH ACM SIGSOFT INTERNATIONAL WORKSHOP ON SOFTWARE ANALYTICS (SWAN'18), pp. 8β14.
2018 article
Comprehension Effort and Programming Activities: Related? Or Not Related?
2018 IEEE/ACM 15TH INTERNATIONAL CONFERENCE ON MINING SOFTWARE REPOSITORIES (MSR), pp. 66β69.
2018 article
Poster: Defect Prediction Metrics for Infrastructure as Code Scripts in DevOps
PROCEEDINGS 2018 IEEE/ACM 40TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING - COMPANION (ICSE-COMPANION, pp. 414β415.
2018 article
What Questions Do Programmers Ask About Configuration as Code?
PROCEEDINGS 2018 IEEE/ACM 4TH INTERNATIONAL WORKSHOP ON RAPID CONTINUOUS SOFTWARE ENGINEERING (RCOSE), pp. 16β22.
2016 article
Software Security in DevOps: Synthesizing Practitioners' Perceptions and Practices
INTERNATIONAL WORKSHOP ON CONTINUOUS SOFTWARE EVOLUTION AND DELIVERY, CSED 2016, pp. 70β76.
2016 conference paper
Tutorial: text analytics for security
Symposium and Bootcamp on the Science of Security, 124β125.
2015 article
Synthesizing Continuous Deployment Practices Used in Software Development
2015 AGILE CONFERENCE, pp. 1β10.