Dataset: Security vulnerabilities in open-source reused systems

Gkortzis, A. (Creator), Feitosa, D. (Creator) & Spinellis, D. (Creator), University of Groningen, 3-Nov-2019


  • Antonios Gkortzis (Creator)
  • Daniel Feitosa (Creator)
  • Diomidis Spinellis (Creator)


This dataset comprise 2017 Java projects. It contains information related to their external dependencies and its potential and disclosed security vulnerabilities.
The potential vulnerabilities were detected with the use of the SpotBugs static analyzer tool, while the disclosed ones with the use of OWASP Dependency Check tool.
This dataset was generated during a research effort to correlate software reuse to security vulnerabilities.
The scripts for reproducing the dataset and analyzing it are available on GitHub under this link [].
Date made available3-Nov-2019
PublisherUniversity of Groningen
Access to the dataset Open

    Keywords on Datasets

  • Security, open source, Java, OWASP Dependency Check, SpotBugs static analyzer
Related Publications
  1. A Double-Edged Sword? Software Reuse and Potential Security Vulnerabilities

    Gkortzis, A., Feitosa, D. & Spinellis, D., 2019, Proceedings of the 18th International Conference on Software and Systems Reuse (ICSR '19). Springer, p. 187-203 16 p. (Lecture Notes in Computer Science; vol. 11602).

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

View all (1) »

Related Datasets
  1. Dataset: Potential security vulnerabilities in open-source reused systems

    Gkortzis, A. (Creator), Feitosa, D. (Creator), Avgeriou, P. (Creator) & Spinellis, D. (Creator), University of Groningen, 15-Feb-2019


View all (1) »

ID: 103419146