Announcement of a Defense of a Dissertation- Tapajit Dey
Candidate for Doctor of Philosophy
Defense of PhD Dissertation
Faculty Advisor: Audris Mockus
Modeling User-Affected Software Properties for Open Source Software Supply Chains
Background: The Open Source Software development community relies heavily on users of the software and contributors outside of the core developers to produce top-quality software and provide long-term support. However, the relationship between a software and its contributors in terms of exactly how they are related through dependencies and how the users of a software affect many of its properties are not very well understood.
Aim: My research covers a number of aspects related to answering the overarching question of modeling the software properties affected by users and the supply chain structure of software ecosystems, viz.
1) Understanding how software usage affect its perceived quality;
2) Estimating the effects of indirect usage (e.g. dependent packages) on software popularity;
3) Investigating the patch submission and issue creation patterns of external contributors;
4) Examining how the patch acceptance probability is related to the contributors' characteristics.
5) A related topic, the identification of bots that commit code, aimed at improving the accuracy of these and other similar studies was also investigated.
Methodology: Most of the Research Questions are addressed by studying the NPM ecosystem, with data from various sources like the World of Code, GHTorrent, and the GiHub API. Different supervised and unsupervised machine learning models, including Regression, Random Forest, Bayesian Networks, and clustering, were used to answer appropriate questions.
1) Software usage affects its perceived quality even after accounting for code complexity measures.
2) The number of dependents and dependencies of a software were observed to be able to predict the change in its popularity with good accuracy.
3) Users interact (contribute issues or patches) primarily with their direct dependencies, and rarely with transitive dependencies.
4) A user's earlier interaction with the repository to which they are contributing a patch, and their familiarity with related topics were important predictors impacting the chance of a pull request getting accepted.
5) Developed BIMAN, a systematic methodology for identifying bots.
Conclusion: Different aspects of how users and their characteristics affect different software properties were analyzed, which should lead to a better understanding of the complex interaction between software developers and users/ contributors.
Please email Tapajit Dey at email@example.com for the Zoom meeting ID.
Tuesday, August 4 at 10:00amVirtual Event