Software Trustworthiness 2.0-A Semantic Web Enabled Global Source Code Analysis Approach
Title | Software Trustworthiness 2.0-A Semantic Web Enabled Global Source Code Analysis Approach |
Publication Type | Journal Article |
Year of Publication | 2014 |
Authors | Keivanloo, Iman, Rilling, Juergen |
Journal | J. Syst. Softw. |
Volume | 89 |
Pagination | 33–50 |
ISSN | 0164-1212 |
Keywords | Global source code analysis, Linked data, Semantic Web, Source code analysis |
Abstract | There has been an ongoing trend toward collaborative software development using open and shared source code published in large software repositories on the Internet. While traditional source code analysis techniques perform well in single project contexts, new types of source code analysis techniques are ermerging, which focus on global source code analysis challenges. In this article, we discuss how the Semantic Web, can become an enabling technology to provide a standardized, formal, and semantic rich representations for modeling and analyzing large global source code corpora. Furthermore, inference services and other services provided by Semantic Web technologies can be used to support a variety of core source code analysis techniques, such as semantic code search, call graph construction, and clone detection. In this paper, we introduce SeCold, the first publicly available online linked data source code dataset for software engineering researchers and practitioners. Along with its dataset, SeCold also provides some Semantic Web enabled core services to support the analysis of Internet-scale source code repositories. We illustrated through several examples how this linked data combined with Semantic Web technologies can be harvested for different source code analysis tasks to support software trustworthiness. For the case studies, we combine both our linked-data set and Semantic Web enabled source code analysis services with knowledge extracted from StackOverflow, a crowdsourcing website. These case studies, we demonstrate that our approach is not only capable of crawling, processing, and scaling to traditional types of structured data (e.g., source code), but also supports emerging non-structured data sources, such as crowdsourced information (e.g., StackOverflow.com) to support a global source code analysis context. |
URL | http://dx.doi.org/10.1016/j.jss.2013.08.030 |
DOI | 10.1016/j.jss.2013.08.030 |
Citation Key | Keivanloo:2014:STS:2576249.2576483 |