{"id":"https://openalex.org/W3201454943","doi":"https://doi.org/10.1109/tse.2021.3112204","title":"Back to the Past \u2013 Analysing Backporting Practices in Package Dependency Networks","display_name":"Back to the Past \u2013 Analysing Backporting Practices in Package Dependency Networks","publication_year":2021,"publication_date":"2021-09-16","ids":{"openalex":"https://openalex.org/W3201454943","doi":"https://doi.org/10.1109/tse.2021.3112204","mag":"3201454943"},"language":"en","primary_location":{"id":"doi:10.1109/tse.2021.3112204","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tse.2021.3112204","pdf_url":null,"source":{"id":"https://openalex.org/S8351582","display_name":"IEEE Transactions on Software Engineering","issn_l":"0098-5589","issn":["0098-5589","1939-3520","2326-3881"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Software Engineering","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://orbi.umons.ac.be/bitstream/20.500.12907/25365/1/TSE-2021.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5038395521","display_name":"Alexandre Decan","orcid":"https://orcid.org/0000-0002-5824-5823"},"institutions":[{"id":"https://openalex.org/I130929987","display_name":"University of Mons","ror":"https://ror.org/02qnnz951","country_code":"BE","type":"education","lineage":["https://openalex.org/I130929987"]}],"countries":["BE"],"is_corresponding":true,"raw_author_name":"Alexandre Decan","raw_affiliation_strings":["Software Engineering Lab, University of Mons, Mons, Belgium"],"affiliations":[{"raw_affiliation_string":"Software Engineering Lab, University of Mons, Mons, Belgium","institution_ids":["https://openalex.org/I130929987"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060239584","display_name":"Tom Mens","orcid":"https://orcid.org/0000-0003-3636-5020"},"institutions":[{"id":"https://openalex.org/I130929987","display_name":"University of Mons","ror":"https://ror.org/02qnnz951","country_code":"BE","type":"education","lineage":["https://openalex.org/I130929987"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Tom Mens","raw_affiliation_strings":["Software Engineering Lab, University of Mons, Mons, Belgium"],"affiliations":[{"raw_affiliation_string":"Software Engineering Lab, University of Mons, Mons, Belgium","institution_ids":["https://openalex.org/I130929987"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056738223","display_name":"Ahmed Zerouali","orcid":"https://orcid.org/0000-0002-2676-3730"},"institutions":[{"id":"https://openalex.org/I13469542","display_name":"Vrije Universiteit Brussel","ror":"https://ror.org/006e5kg04","country_code":"BE","type":"education","lineage":["https://openalex.org/I13469542"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Ahmed Zerouali","raw_affiliation_strings":["Software Languages Lab, Vrije Universiteit Brussel, Brussel, Belgium"],"affiliations":[{"raw_affiliation_string":"Software Languages Lab, Vrije Universiteit Brussel, Brussel, Belgium","institution_ids":["https://openalex.org/I13469542"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5042827940","display_name":"Coen De Roover","orcid":"https://orcid.org/0000-0002-1710-1268"},"institutions":[{"id":"https://openalex.org/I13469542","display_name":"Vrije Universiteit Brussel","ror":"https://ror.org/006e5kg04","country_code":"BE","type":"education","lineage":["https://openalex.org/I13469542"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Coen De Roover","raw_affiliation_strings":["Software Languages Lab, Vrije Universiteit Brussel, Brussel, Belgium"],"affiliations":[{"raw_affiliation_string":"Software Languages Lab, Vrije Universiteit Brussel, Brussel, Belgium","institution_ids":["https://openalex.org/I13469542"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5038395521"],"corresponding_institution_ids":["https://openalex.org/I130929987"],"apc_list":null,"apc_paid":null,"fwci":4.2685,"has_fulltext":true,"cited_by_count":19,"citation_normalized_percentile":{"value":0.94673868,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":96,"max":99},"biblio":{"volume":"48","issue":"10","first_page":"4087","last_page":"4099"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9976000189781189,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12423","display_name":"Software Reliability and Analysis Research","score":0.9965999722480774,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.702368974685669},{"id":"https://openalex.org/keywords/dependency","display_name":"Dependency (UML)","score":0.5483260750770569},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5362711548805237},{"id":"https://openalex.org/keywords/variety","display_name":"Variety (cybernetics)","score":0.4488329589366913},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.4361419081687927},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3414592146873474},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.3088504374027252},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2891232967376709},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.13997742533683777}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.702368974685669},{"id":"https://openalex.org/C19768560","wikidata":"https://www.wikidata.org/wiki/Q320727","display_name":"Dependency (UML)","level":2,"score":0.5483260750770569},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5362711548805237},{"id":"https://openalex.org/C136197465","wikidata":"https://www.wikidata.org/wiki/Q1729295","display_name":"Variety (cybernetics)","level":2,"score":0.4488329589366913},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.4361419081687927},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3414592146873474},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.3088504374027252},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2891232967376709},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.13997742533683777}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1109/tse.2021.3112204","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tse.2021.3112204","pdf_url":null,"source":{"id":"https://openalex.org/S8351582","display_name":"IEEE Transactions on Software Engineering","issn_l":"0098-5589","issn":["0098-5589","1939-3520","2326-3881"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Software Engineering","raw_type":"journal-article"},{"id":"pmh:oai:orbi.umons.ac.be:20.500.12907/25365","is_oa":true,"landing_page_url":"https://orbi.umons.ac.be/handle/20.500.12907/25365","pdf_url":"https://orbi.umons.ac.be/bitstream/20.500.12907/25365/1/TSE-2021.pdf","source":{"id":"https://openalex.org/S7407055454","display_name":"ORBi UMONS","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Transactions on Software Engineering (2021-09-27)","raw_type":"peer reviewed"},{"id":"pmh:oai:vubissmart:VUBISSMART:2000:152841","is_oa":true,"landing_page_url":"https://doi.org/10.1109/TSE.2021.3112204","pdf_url":"http://soft.vub.ac.be/Publications/2021/vub-tr-soft-21-12.pdf","source":{"id":"https://openalex.org/S4306402573","display_name":"VUBIR (Vrije Universiteit Brussel)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I13469542","host_organization_name":"Vrije Universiteit Brussel","host_organization_lineage":["https://openalex.org/I13469542"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"publishedVersion"}],"best_oa_location":{"id":"pmh:oai:orbi.umons.ac.be:20.500.12907/25365","is_oa":true,"landing_page_url":"https://orbi.umons.ac.be/handle/20.500.12907/25365","pdf_url":"https://orbi.umons.ac.be/bitstream/20.500.12907/25365/1/TSE-2021.pdf","source":{"id":"https://openalex.org/S7407055454","display_name":"ORBi UMONS","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Transactions on Software Engineering (2021-09-27)","raw_type":"peer reviewed"},"sustainable_development_goals":[{"score":0.5,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G1329855610","display_name":null,"funder_award_id":"project","funder_id":"https://openalex.org/F4320321390","funder_display_name":"Fonds De La Recherche Scientifique - FNRS"},{"id":"https://openalex.org/G4409544000","display_name":null,"funder_award_id":"T.0017.18","funder_id":"https://openalex.org/F4320321390","funder_display_name":"Fonds De La Recherche Scientifique - FNRS"},{"id":"https://openalex.org/G7697528747","display_name":null,"funder_award_id":"O.0157.18F-RG43","funder_id":"https://openalex.org/F4320321390","funder_display_name":"Fonds De La Recherche Scientifique - FNRS"}],"funders":[{"id":"https://openalex.org/F4320321390","display_name":"Fonds De La Recherche Scientifique - FNRS","ror":"https://ror.org/03q83t159"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W3201454943.pdf","grobid_xml":"https://content.openalex.org/works/W3201454943.grobid-xml"},"referenced_works_count":40,"referenced_works":["https://openalex.org/W1842503650","https://openalex.org/W1972978214","https://openalex.org/W1978813754","https://openalex.org/W1993114042","https://openalex.org/W2121044470","https://openalex.org/W2136279823","https://openalex.org/W2140952846","https://openalex.org/W2242968794","https://openalex.org/W2337042987","https://openalex.org/W2548749170","https://openalex.org/W2572780648","https://openalex.org/W2607296448","https://openalex.org/W2614073125","https://openalex.org/W2767231363","https://openalex.org/W2789570312","https://openalex.org/W2922836104","https://openalex.org/W2945486631","https://openalex.org/W2963748706","https://openalex.org/W2963923573","https://openalex.org/W2965940576","https://openalex.org/W2967095170","https://openalex.org/W3000784322","https://openalex.org/W3036270494","https://openalex.org/W3094949573","https://openalex.org/W3101141194","https://openalex.org/W3104970816","https://openalex.org/W3116924855","https://openalex.org/W3128866028","https://openalex.org/W3142656464","https://openalex.org/W3144106047","https://openalex.org/W3145959950","https://openalex.org/W3150814957","https://openalex.org/W3172515123","https://openalex.org/W3178549314","https://openalex.org/W3184420437","https://openalex.org/W3196043647","https://openalex.org/W4256420017","https://openalex.org/W4291213652","https://openalex.org/W6748952102","https://openalex.org/W6759246942"],"related_works":["https://openalex.org/W2032233321","https://openalex.org/W3121970507","https://openalex.org/W2110028391","https://openalex.org/W54497855","https://openalex.org/W217960748","https://openalex.org/W3125814499","https://openalex.org/W2090827041","https://openalex.org/W2094012830","https://openalex.org/W187246281","https://openalex.org/W2079194830"],"abstract_inverted_index":{"The":[0],"practice":[1],"of":[2,9,22,55,117,136,165],"backporting":[3,72,148],"aims":[4],"to":[5,18,31,59,140],"bring":[6],"the":[7,71,131,141],"benefits":[8],"a":[10,16,19,23,28,42,52,115,163],"bug":[11],"or":[12],"vulnerability":[13],"fix":[14],"from":[15,104],"higher":[17],"lower":[20,43,63],"release":[21],"software":[24,56],"package.":[25],"When":[26],"such":[27],"package":[29,77],"adheres":[30],"semantic":[32],"versioning,":[33],"backports":[34,105],"can":[35],"be":[36],"recognised":[37],"as":[38],"new":[39],"releases":[40],"in":[41,50,74,130],"major":[44,64,124],"train.":[45,65],"This":[46],"is":[47,150],"particularly":[48],"useful":[49],"case":[51],"substantial":[53],"number":[54],"packages":[57,101,138,161],"continues":[58],"depend":[60],"on":[61],"that":[62,98,114,147],"In":[66,110],"this":[67],"article,":[68],"we":[69,112,145],"study":[70],"practices":[73],"four":[75],"popular":[76],"distributions,":[78],"namely":[79],"<italic":[80,84,88,92],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[81,85,89,93],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Cargo</i>":[82],",":[83,87],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">npm</i>":[86],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Packagist</i>":[90],"and":[91,153,158],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">RubyGems</i>":[94],".":[95],"We":[96],"observe":[97],"many":[99],"dependent":[100,137],"could":[102],"benefit":[103],"provided":[106],"by":[107,156],"their":[108],"dependencies.":[109],"particular,":[111],"find":[113,146],"majority":[116],"security":[118],"vulnerabilities":[119],"affect":[120],"more":[121,159],"than":[122],"one":[123],"train":[125],"but":[126],"are":[127],"only":[128],"fixed":[129],"highest":[132],"one,":[133],"letting":[134],"thousands":[135],"exposed":[139],"vulnerability.":[142],"Despite":[143],"that,":[144],"updates":[149],"quite":[151],"infrequent,":[152],"mostly":[154],"practised":[155],"long-lived":[157],"active":[160],"for":[162],"variety":[164],"reasons.":[166]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":4},{"year":2023,"cited_by_count":8},{"year":2022,"cited_by_count":3}],"updated_date":"2026-04-13T07:58:08.660418","created_date":"2025-10-10T00:00:00"}