Fixing Outside the Box: Uncovering Tactics for Open-Source Security Issue Management
Published by
Proceedings of the ACM on Software Engineering
Summary
journal-article
Xiaoyu Sun
About
Xiaoyu is a Lecturer of Software Engineering at Australian National University. Prior to that, she obtained her PhD degree at Monash University under the supervision of Li. Li and John Grundy. Her research field interests mainly lie in the field of Mobile Software Engineering (i.e., Mobile Security and quality assurance) and Intelligent Software Engineering (SE4AI, AI4SE). In particular, her research focuses on applying static code analysis, dynamic program testing, and natural language processing techniques to strengthen the security and reliability of software systems. Specifically, her current research projects include developing tools for Android defects detection, e.g., compatibility issues, and privacy leaks. Xiaoyu's research has been published in top-tier conferences and journals including ICSE, ASE, TOSEM, ISSRE, MSR, and IST. She has also established extensive collaboration with the industry, including Bytedance and Alibaba.
Work
The Australian National University
Australia
Australian National University
Australia
Publications
DeclarUI: Bridging Design and Development with Automated Declarative UI Code Generation
Published by
Proceedings of the ACM on Software Engineering
Summary
journal-article
A3-CodGen: A Repository-Level Code Generation Framework for Code Reuse With Local-Aware, Global-Aware, and Third-Party-Library-Aware
Published by
IEEE Transactions on Software Engineering
Summary
journal-article
A3-CodGen: A Repository-Level Code Generation Framework for Code Reuse With Local-Aware, Global-Aware, and Third-Party-Library-Aware
Published by
IEEE Transactions on Software Engineering
Summary
journal-article
Incremental Context-free Grammar Inference in Black Box Settings
Summary
conference-paper
Incremental Context-free Grammar Inference in Black Box Settings
Published by
Proceedings - 2024 39th ACM/IEEE International Conference on Automated Software Engineering, ASE 2024
Summary
conference-paper
Are Your Android App Analyzers Still Relevant?
Summary
conference-paper
LazyCow: A Lightweight Crowdsourced Testing Tool for Taming Android Fragmentation
Summary
conference-paper
Demystifying Hidden Sensitive Operations in Android Apps
Published by
ACM Transactions on Software Engineering and Methodology
Summary
journal-article
Taming Android Fragmentation through Lightweight Crowdsourced Testing
Published by
IEEE Transactions on Software Engineering
Summary
journal-article
A First Look at CI/CD Adoptions in Open-Source Android Apps
Published by
Proceedings of the 37th IEEE/ACM International Conference on Automated Software Engineering
Summary
conference-paper
Mining Android API Usage to Generate Unit Test Cases for Pinpointing Compatibility Issues
Summary
conference-paper
Code implementation recommendation for Android GUI components
Published by
Proceedings of the ACM/IEEE 44th International Conference on Software Engineering: Companion Proceedings
Summary
conference-paper
JuCify
Published by
Proceedings of the 44th International Conference on Software Engineering
Summary
conference-paper
A First Look at Security Risks of Android TV Apps
Published by
2021 36th IEEE/ACM International Conference on Automated Software Engineering Workshops (ASEW)
Summary
conference-paper
Characterizing Sensor Leaks in Android Apps
Published by
2021 IEEE 32nd International Symposium on Software Reliability Engineering (ISSRE)
Summary
conference-paper
Icon2Code: Recommending code implementations for Android GUI components
Published by
Information and Software Technology
Summary
journal-article
Taming Reflection
Published by
ACM Transactions on Software Engineering and Methodology
Summary
journal-article
AndroZooOpen
Published by
Proceedings of the 17th International Conference on Mining Software Repositories
Summary
conference-paper