{"id":"https://openalex.org/W4413556823","doi":"https://doi.org/10.1109/access.2025.3602480","title":"Predicting Vulnerable Code Changes Using Technical Debt Indicators","display_name":"Predicting Vulnerable Code Changes Using Technical Debt Indicators","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W4413556823","doi":"https://doi.org/10.1109/access.2025.3602480"},"language":"en","primary_location":{"id":"doi:10.1109/access.2025.3602480","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3602480","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2025.3602480","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5006614669","display_name":"Ru\u015fen Halepmollas\u0131","orcid":"https://orcid.org/0000-0002-9941-2712"},"institutions":[{"id":"https://openalex.org/I48912391","display_name":"Istanbul Technical University","ror":"https://ror.org/059636586","country_code":"TR","type":"education","lineage":["https://openalex.org/I48912391"]}],"countries":["TR"],"is_corresponding":false,"raw_author_name":"Rusen Akkus Halepmollasi","raw_affiliation_strings":["Faculty of Computer and Informatics Engineering, Istanbul Technical University, Istanbul, Türkiye","Faculty of Computer and Informatics Engineering, Istanbul Technical University, Turkey"],"raw_orcid":"https://orcid.org/0000-0002-9941-2712","affiliations":[{"raw_affiliation_string":"Faculty of Computer and Informatics Engineering, Istanbul Technical University, Istanbul, Türkiye","institution_ids":["https://openalex.org/I48912391"]},{"raw_affiliation_string":"Faculty of Computer and Informatics Engineering, Istanbul Technical University, Turkey","institution_ids":["https://openalex.org/I48912391"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5089239701","display_name":"Ay\u015fe Tosun","orcid":"https://orcid.org/0000-0003-1859-7872"},"institutions":[{"id":"https://openalex.org/I48912391","display_name":"Istanbul Technical University","ror":"https://ror.org/059636586","country_code":"TR","type":"education","lineage":["https://openalex.org/I48912391"]}],"countries":["TR"],"is_corresponding":false,"raw_author_name":"Ayse Tosun","raw_affiliation_strings":["Faculty of Computer and Informatics Engineering, Istanbul Technical University, Istanbul, Türkiye","Faculty of Computer and Informatics Engineering, Istanbul Technical University, Turkey"],"raw_orcid":"https://orcid.org/0000-0003-1859-7872","affiliations":[{"raw_affiliation_string":"Faculty of Computer and Informatics Engineering, Istanbul Technical University, Istanbul, Türkiye","institution_ids":["https://openalex.org/I48912391"]},{"raw_affiliation_string":"Faculty of Computer and Informatics Engineering, Istanbul Technical University, Turkey","institution_ids":["https://openalex.org/I48912391"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.30308298,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"13","issue":null,"first_page":"153896","last_page":"153917"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9887999892234802,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9887999892234802,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9229999780654907,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6218517422676086},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.5284454822540283},{"id":"https://openalex.org/keywords/technical-debt","display_name":"Technical debt","score":0.4696504473686218},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.37137237191200256},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.2145967185497284},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.15254193544387817}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6218517422676086},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.5284454822540283},{"id":"https://openalex.org/C159198006","wikidata":"https://www.wikidata.org/wiki/Q1532172","display_name":"Technical debt","level":4,"score":0.4696504473686218},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.37137237191200256},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.2145967185497284},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.15254193544387817},{"id":"https://openalex.org/C529173508","wikidata":"https://www.wikidata.org/wiki/Q638608","display_name":"Software development","level":3,"score":0.0},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.0},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1109/access.2025.3602480","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3602480","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:ffd76720e2e1422dac749aa97dc3554f","is_oa":true,"landing_page_url":"https://doaj.org/article/ffd76720e2e1422dac749aa97dc3554f","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 13, Pp 153896-153917 (2025)","raw_type":"article"},{"id":"pmh:oai:polen.itu.edu.tr:11527/66329","is_oa":false,"landing_page_url":"https://hdl.handle.net/11527/66329","pdf_url":null,"source":{"id":"https://openalex.org/S4306400460","display_name":"Istanbul Technical University Academic Open Archive (Istanbul Technical University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I48912391","host_organization_name":"Istanbul Technical University","host_organization_lineage":["https://openalex.org/I48912391"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Article"}],"best_oa_location":{"id":"doi:10.1109/access.2025.3602480","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2025.3602480","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":94,"referenced_works":["https://openalex.org/W184864173","https://openalex.org/W1524601730","https://openalex.org/W1596717185","https://openalex.org/W1773448242","https://openalex.org/W1984574506","https://openalex.org/W1985040977","https://openalex.org/W1987922655","https://openalex.org/W1992114977","https://openalex.org/W1993139624","https://openalex.org/W1996257013","https://openalex.org/W1996565597","https://openalex.org/W2004586836","https://openalex.org/W2004833623","https://openalex.org/W2013797311","https://openalex.org/W2022695357","https://openalex.org/W2024527596","https://openalex.org/W2028820179","https://openalex.org/W2028836139","https://openalex.org/W2031271477","https://openalex.org/W2099741732","https://openalex.org/W2112533109","https://openalex.org/W2113157806","https://openalex.org/W2116610783","https://openalex.org/W2118978333","https://openalex.org/W2124477160","https://openalex.org/W2137789775","https://openalex.org/W2148802839","https://openalex.org/W2165004968","https://openalex.org/W2196945619","https://openalex.org/W2294407885","https://openalex.org/W2339737717","https://openalex.org/W2359516361","https://openalex.org/W2476494490","https://openalex.org/W2585107407","https://openalex.org/W2728220450","https://openalex.org/W2740981432","https://openalex.org/W2754638064","https://openalex.org/W2769069578","https://openalex.org/W2773906175","https://openalex.org/W2795027827","https://openalex.org/W2795170942","https://openalex.org/W2800788706","https://openalex.org/W2888547534","https://openalex.org/W2899093427","https://openalex.org/W2899407111","https://openalex.org/W2905148565","https://openalex.org/W2910477368","https://openalex.org/W2942625968","https://openalex.org/W2954560898","https://openalex.org/W2963926786","https://openalex.org/W2966181603","https://openalex.org/W2968738488","https://openalex.org/W2970588580","https://openalex.org/W2979367822","https://openalex.org/W2982412981","https://openalex.org/W2997591727","https://openalex.org/W2998678832","https://openalex.org/W3020617474","https://openalex.org/W3088005007","https://openalex.org/W3093853090","https://openalex.org/W3094120457","https://openalex.org/W3127057638","https://openalex.org/W3135507467","https://openalex.org/W3142482686","https://openalex.org/W3150900199","https://openalex.org/W3152352337","https://openalex.org/W3152840596","https://openalex.org/W3166095789","https://openalex.org/W3178819629","https://openalex.org/W3185930785","https://openalex.org/W3199693282","https://openalex.org/W3208088174","https://openalex.org/W4205192141","https://openalex.org/W4206471719","https://openalex.org/W4212874595","https://openalex.org/W4214680673","https://openalex.org/W4214834810","https://openalex.org/W4229635402","https://openalex.org/W4241840450","https://openalex.org/W4254993176","https://openalex.org/W4284709537","https://openalex.org/W4291213652","https://openalex.org/W4308627662","https://openalex.org/W4308653691","https://openalex.org/W4318408433","https://openalex.org/W4323075269","https://openalex.org/W4367021285","https://openalex.org/W4375854125","https://openalex.org/W4391114577","https://openalex.org/W4391395450","https://openalex.org/W4393029443","https://openalex.org/W4395483265","https://openalex.org/W4399647672","https://openalex.org/W4399667873"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2070437629","https://openalex.org/W2060038150","https://openalex.org/W2031271477","https://openalex.org/W1840755814","https://openalex.org/W3130266246","https://openalex.org/W3133010148","https://openalex.org/W2034782377"],"abstract_inverted_index":{"Technical":[0],"debt":[1,36,44,67,80,97,105,144],"refers":[2],"to":[3,40,86,120,149],"the":[4,32,101,121,138],"cost":[5],"of":[6,103,123],"delayed":[7],"technical":[8,35,43,66,79,96,104,143],"work":[9],"and":[10,25,37,60,74,98,131,145,153],"poor":[11],"design":[12],"choices":[13],"in":[14],"software":[15,38,46,55,75,107,129,151],"systems.":[16],"Software":[17],"security":[18,152],"focuses":[19],"on":[20,106],"protecting":[21],"systems":[22],"against":[23],"vulnerabilities":[24,39],"exploits.":[26],"In":[27],"this":[28,127],"study,":[29],"we":[30],"explore":[31],"relationship":[33],"between":[34,95],"understand":[41],"how":[42],"impacts":[45],"security.":[47,108],"We":[48,63,109],"collected":[49],"real":[50],"world":[51],"data":[52],"from":[53],"six":[54],"projects,":[56],"including":[57],"code":[58,71,116],"changes":[59],"corresponding":[61],"vulnerabilities.":[62,88,124],"investigate":[64],"various":[65],"indicators,":[68],"such":[69,114],"as":[70,115],"smells,":[72,117],"bugs,":[73],"metrics,":[76],"along":[77],"with":[78,141],"mitigation":[81],"methods":[82],"like":[83],"refactoring":[84],"activities,":[85],"predict":[87],"The":[89],"findings":[90],"reveal":[91],"a":[92],"significant":[93],"association":[94],"vulnerabilities,":[99],"highlighting":[100],"impact":[102],"also":[110],"identify":[111],"specific":[112],"artifacts,":[113],"that":[118],"contribute":[119],"emergence":[122],"By":[125],"understanding":[126],"relationship,":[128],"practitioners":[130],"project":[132],"managers":[133],"can":[134],"gain":[135],"insights":[136],"into":[137],"risks":[139],"associated":[140],"accumulated":[142],"take":[146],"appropriate":[147],"measures":[148],"enhance":[150],"quality.":[154]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}