Modern Code Review (MCR) is an established software development process that aims to improve software quality. Although evidence showed that higher levels of review coverage relates to less post-release bugs, it remains unknown the effectiveness of MCR at specifically finding security issues. We present a work we conduct aiming to fill that gap by exploring the MCR process in the Chromium open source project. We manually analyzed large sets of registered (114 cases) and missed (71 cases) security issues by backtracking in the project’s issue, review, and code histories. This enabled us to qualify MCR in Chromium from the security perspective from several angles: Are security issues being discussed frequently? What categories of security iss...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...
Modern Code Review (MCR) is an established software development process that aims to improve softwar...
Modern Code Review (MCR) is an established software development process that aims to improve softwar...
Modern Code Review (MCR) is an established software development process that aims to improve softwar...
Modern Code Review (MCR) is an established software development process that aims to improve softwar...
Modern code review is a lightweight and informal process for integrating changes into a software pro...
Code review is the manual assessment of source code by humans, mainly intended to identify defects a...
Code review is the manual assessment of source code by humans, mainly intended to identify defects a...
As products and services become increasingly digital and software increasingly complex, all aspects ...
As products and services become increasingly digital and software increasingly complex, all aspects ...
As developers face ever-increasing pressure to engineer secure software, researchers are building an...
Modern code review (MCR) is now broadly adopted as an established and effective software quality ass...
Abstract—Software code review is a well-established software quality practice. Recently, Modern Code...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...
Modern Code Review (MCR) is an established software development process that aims to improve softwar...
Modern Code Review (MCR) is an established software development process that aims to improve softwar...
Modern Code Review (MCR) is an established software development process that aims to improve softwar...
Modern Code Review (MCR) is an established software development process that aims to improve softwar...
Modern code review is a lightweight and informal process for integrating changes into a software pro...
Code review is the manual assessment of source code by humans, mainly intended to identify defects a...
Code review is the manual assessment of source code by humans, mainly intended to identify defects a...
As products and services become increasingly digital and software increasingly complex, all aspects ...
As products and services become increasingly digital and software increasingly complex, all aspects ...
As developers face ever-increasing pressure to engineer secure software, researchers are building an...
Modern code review (MCR) is now broadly adopted as an established and effective software quality ass...
Abstract—Software code review is a well-established software quality practice. Recently, Modern Code...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...
This dataset is associated with the paper ""Why Security Defects Go Unnoticed during Code Reviews? A...