{"id":"https://openalex.org/W4398239311","doi":"https://doi.org/10.1145/3639478.3643534","title":"Automated Security Repair for Helm Charts","display_name":"Automated Security Repair for Helm Charts","publication_year":2024,"publication_date":"2024-04-14","ids":{"openalex":"https://openalex.org/W4398239311","doi":"https://doi.org/10.1145/3639478.3643534"},"language":"en","primary_location":{"id":"doi:10.1145/3639478.3643534","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3639478.3643534","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3639478.3643534","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 IEEE/ACM 46th International Conference on Software Engineering: Companion Proceedings","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3639478.3643534","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5022459451","display_name":"Francesco Minna","orcid":"https://orcid.org/0000-0002-3018-044X"},"institutions":[{"id":"https://openalex.org/I865915315","display_name":"Vrije Universiteit Amsterdam","ror":"https://ror.org/008xxew50","country_code":"NL","type":"education","lineage":["https://openalex.org/I865915315"]}],"countries":["NL"],"is_corresponding":true,"raw_author_name":"Francesco Minna","raw_affiliation_strings":["Vrije Universiteit Amsterdam, Amsterdam, Netherlands"],"affiliations":[{"raw_affiliation_string":"Vrije Universiteit Amsterdam, Amsterdam, Netherlands","institution_ids":["https://openalex.org/I865915315"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031952821","display_name":"Agathe Blaise","orcid":"https://orcid.org/0000-0002-9598-8482"},"institutions":[{"id":"https://openalex.org/I4210140930","display_name":"Thales (France)","ror":"https://ror.org/04emwm605","country_code":"FR","type":"company","lineage":["https://openalex.org/I4210140930"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Agathe Blaise","raw_affiliation_strings":["Thales SIX GTS France, Gennevilliers, France"],"affiliations":[{"raw_affiliation_string":"Thales SIX GTS France, Gennevilliers, France","institution_ids":["https://openalex.org/I4210140930"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085639552","display_name":"Fabio Massacci","orcid":"https://orcid.org/0000-0002-1091-8486"},"institutions":[{"id":"https://openalex.org/I193223587","display_name":"University of Trento","ror":"https://ror.org/05trd4x28","country_code":"IT","type":"education","lineage":["https://openalex.org/I193223587"]},{"id":"https://openalex.org/I865915315","display_name":"Vrije Universiteit Amsterdam","ror":"https://ror.org/008xxew50","country_code":"NL","type":"education","lineage":["https://openalex.org/I865915315"]}],"countries":["IT","NL"],"is_corresponding":false,"raw_author_name":"Fabio Massacci","raw_affiliation_strings":["University of Trento, Trento, Italy","Vrije Universiteit Amsterdam, Amsterdam, Netherlands","Vrije Universiteit Amsterdam, Amsterdam, Netherlands University of Trento, Trento, Italy"],"affiliations":[{"raw_affiliation_string":"University of Trento, Trento, Italy","institution_ids":["https://openalex.org/I193223587"]},{"raw_affiliation_string":"Vrije Universiteit Amsterdam, Amsterdam, Netherlands","institution_ids":["https://openalex.org/I865915315"]},{"raw_affiliation_string":"Vrije Universiteit Amsterdam, Amsterdam, Netherlands University of Trento, Trento, Italy","institution_ids":["https://openalex.org/I193223587","https://openalex.org/I865915315"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5007822940","display_name":"Katja Tuma","orcid":"https://orcid.org/0000-0001-7189-2817"},"institutions":[{"id":"https://openalex.org/I865915315","display_name":"Vrije Universiteit Amsterdam","ror":"https://ror.org/008xxew50","country_code":"NL","type":"education","lineage":["https://openalex.org/I865915315"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Katja Tuma","raw_affiliation_strings":["Vrije Universiteit Amsterdam, Amsterdam, Netherlands"],"affiliations":[{"raw_affiliation_string":"Vrije Universiteit Amsterdam, Amsterdam, Netherlands","institution_ids":["https://openalex.org/I865915315"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5022459451"],"corresponding_institution_ids":["https://openalex.org/I865915315"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.0936228,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"412","last_page":"413"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9932000041007996,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9932000041007996,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12127","display_name":"Software System Performance and Reliability","score":0.9908000230789185,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11719","display_name":"Data Quality and Management","score":0.9901000261306763,"subfield":{"id":"https://openalex.org/subfields/1803","display_name":"Management Science and Operations Research"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8564316034317017},{"id":"https://openalex.org/keywords/artifact","display_name":"Artifact (error)","score":0.7735145688056946},{"id":"https://openalex.org/keywords/open-source","display_name":"Open source","score":0.6745296716690063},{"id":"https://openalex.org/keywords/pipeline","display_name":"Pipeline (software)","score":0.6700466275215149},{"id":"https://openalex.org/keywords/chart","display_name":"Chart","score":0.546276330947876},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.5155699253082275},{"id":"https://openalex.org/keywords/software-bug","display_name":"Software bug","score":0.42180880904197693},{"id":"https://openalex.org/keywords/flow-chart","display_name":"Flow chart","score":0.41412025690078735},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.2999263405799866},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.24956673383712769},{"id":"https://openalex.org/keywords/engineering-drawing","display_name":"Engineering drawing","score":0.10489276051521301},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.08061417937278748},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.07630440592765808}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8564316034317017},{"id":"https://openalex.org/C2779010991","wikidata":"https://www.wikidata.org/wiki/Q2720909","display_name":"Artifact (error)","level":2,"score":0.7735145688056946},{"id":"https://openalex.org/C3018397939","wikidata":"https://www.wikidata.org/wiki/Q3644502","display_name":"Open source","level":3,"score":0.6745296716690063},{"id":"https://openalex.org/C43521106","wikidata":"https://www.wikidata.org/wiki/Q2165493","display_name":"Pipeline (software)","level":2,"score":0.6700466275215149},{"id":"https://openalex.org/C190812933","wikidata":"https://www.wikidata.org/wiki/Q28923","display_name":"Chart","level":2,"score":0.546276330947876},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.5155699253082275},{"id":"https://openalex.org/C1009929","wikidata":"https://www.wikidata.org/wiki/Q179550","display_name":"Software bug","level":3,"score":0.42180880904197693},{"id":"https://openalex.org/C2984431290","wikidata":"https://www.wikidata.org/wiki/Q185092","display_name":"Flow chart","level":2,"score":0.41412025690078735},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.2999263405799866},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.24956673383712769},{"id":"https://openalex.org/C199639397","wikidata":"https://www.wikidata.org/wiki/Q1788588","display_name":"Engineering drawing","level":1,"score":0.10489276051521301},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.08061417937278748},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.07630440592765808},{"id":"https://openalex.org/C105795698","wikidata":"https://www.wikidata.org/wiki/Q12483","display_name":"Statistics","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1145/3639478.3643534","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3639478.3643534","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3639478.3643534","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 IEEE/ACM 46th International Conference on Software Engineering: Companion Proceedings","raw_type":"proceedings-article"},{"id":"pmh:oai:research.vu.nl:openaire/c613f01f-c6de-4fcd-9d03-d538f431aa62","is_oa":true,"landing_page_url":"https://research.vu.nl/en/publications/c613f01f-c6de-4fcd-9d03-d538f431aa62","pdf_url":null,"source":{"id":"https://openalex.org/S4306401107","display_name":"VU Research Portal","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I865915315","host_organization_name":"Vrije Universiteit Amsterdam","host_organization_lineage":["https://openalex.org/I865915315"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Minna, F, Blaise, A, Massacci, F & Tuma, K 2024, Automated Security Repair for Helm Charts. in ICSE-Companion '24 : Proceedings of the 2024 IEEE/ACM 46th International Conference on Software Engineering: Companion Proceedings. Proceedings - International Conference on Software Engineering, IEEE Computer Society, pp. 412-413, 46th International Conference on Software Engineering: Companion, ICSE-Companion 2024, Lisbon, Portugal, 14/04/24. https://doi.org/10.1145/3639478.3643534","raw_type":"info:eu-repo/semantics/publishedVersion"},{"id":"pmh:oai:research.vu.nl:openaire_cris_publications/c613f01f-c6de-4fcd-9d03-d538f431aa62","is_oa":true,"landing_page_url":"https://hdl.handle.net/1871.1/c613f01f-c6de-4fcd-9d03-d538f431aa62","pdf_url":"https://research.vu.nl/files/361664415/Automated_Security_Repair_for_Helm_Charts.pdf","source":{"id":"https://openalex.org/S4306401107","display_name":"VU Research Portal","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I865915315","host_organization_name":"Vrije Universiteit Amsterdam","host_organization_lineage":["https://openalex.org/I865915315"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Minna, F, Blaise, A, Massacci, F & Tuma, K 2024, Automated Security Repair for Helm Charts. in ICSE-Companion '24 : Proceedings of the 2024 IEEE/ACM 46th International Conference on Software Engineering: Companion Proceedings. Proceedings - International Conference on Software Engineering, IEEE Computer Society, pp. 412-413, 46th International Conference on Software Engineering: Companion, ICSE-Companion 2024, Lisbon, Portugal, 14/04/24. https://doi.org/10.1145/3639478.3643534","raw_type":"info:eu-repo/semantics/publishedVersion"}],"best_oa_location":{"id":"doi:10.1145/3639478.3643534","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3639478.3643534","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3639478.3643534","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2024 IEEE/ACM 46th International Conference on Software Engineering: Companion Proceedings","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1803996626","display_name":null,"funder_award_id":"101120393","funder_id":"https://openalex.org/F4320332999","funder_display_name":"Horizon 2020 Framework Programme"},{"id":"https://openalex.org/G2507725256","display_name":null,"funder_award_id":"952647","funder_id":"https://openalex.org/F4320332999","funder_display_name":"Horizon 2020 Framework Programme"},{"id":"https://openalex.org/G4030148423","display_name":null,"funder_award_id":"18006","funder_id":"https://openalex.org/F4320321800","funder_display_name":"Nederlandse Organisatie voor Wetenschappelijk Onderzoek"},{"id":"https://openalex.org/G4937468798","display_name":null,"funder_award_id":"H2020","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G5066738871","display_name":null,"funder_award_id":"952647","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G510361925","display_name":null,"funder_award_id":"101120393","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"},{"id":"https://openalex.org/G6009445997","display_name":null,"funder_award_id":"unknown","funder_id":"https://openalex.org/F4320321800","funder_display_name":"Nederlandse Organisatie voor Wetenschappelijk Onderzoek"},{"id":"https://openalex.org/G833212161","display_name":"Implementation of widespread IC design skills in advanced deep submicron technologies at European Academia","funder_award_id":"215180","funder_id":"https://openalex.org/F4320320300","funder_display_name":"European Commission"}],"funders":[{"id":"https://openalex.org/F4320320300","display_name":"European Commission","ror":"https://ror.org/00k4n6c32"},{"id":"https://openalex.org/F4320321800","display_name":"Nederlandse Organisatie voor Wetenschappelijk Onderzoek","ror":"https://ror.org/04jsz6e67"},{"id":"https://openalex.org/F4320332999","display_name":"Horizon 2020 Framework Programme","ror":"https://ror.org/00k4n6c32"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4398239311.pdf","grobid_xml":"https://content.openalex.org/works/W4398239311.grobid-xml"},"referenced_works_count":1,"referenced_works":["https://openalex.org/W4315480688"],"related_works":["https://openalex.org/W52840052","https://openalex.org/W3162837891","https://openalex.org/W2363898576","https://openalex.org/W2382151475","https://openalex.org/W2391243165","https://openalex.org/W3180186477","https://openalex.org/W3010921054","https://openalex.org/W2372687724","https://openalex.org/W157588844","https://openalex.org/W2043894790"],"abstract_inverted_index":{"We":[0,76],"aim":[1],"to":[2,15,26,35],"evaluate":[3,48],"and":[4,40,68,80,93],"compare":[5],"open-source":[6,64],"static":[7],"analyzers":[8],"for":[9,72],"Helm":[10,57,65],"Charts,":[11],"a":[12,24],"package":[13],"manager":[14],"deploy":[16],"applications":[17],"on":[18,60,89],"Kubernetes":[19],"(K8s).":[20],"Specifically,":[21],"we":[22,51,87],"developed":[23],"pipeline":[25],"measure":[27],"what":[28],"misconfigurations":[29],"are":[30],"found":[31,77],"by":[32],"each":[33,73],"tool,":[34],"provide":[36,100],"automatic":[37,101],"misconfiguration":[38],"repair,":[39],"whether":[41],"this":[42],"latter":[43],"breaks":[44],"application":[45],"functionalities.":[46],"To":[47],"our":[49],"approach,":[50],"analyzed":[52],"the":[53,84],"60":[54],"most":[55],"common":[56],"Charts":[58,66],"available":[59],"Artifact":[61],"Hub,":[62],"seven":[63],"analyzers,":[67],"generated":[69],"functionality":[70],"profiles":[71],"chart":[74],"application.":[75],"several":[78],"bugs":[79],"inconsistency":[81],"issues":[82],"with":[83],"tools,":[85],"which":[86],"reported":[88],"respective":[90],"tool":[91],"repositories,":[92],"concluded":[94],"that":[95,98],"such":[96],"tools":[97],"should":[99],"security":[102],"repair":[103],"still":[104],"require":[105],"significant":[106],"manual":[107],"intervention.":[108]},"counts_by_year":[],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}