Publications

Listed below are my publications, and I am working on more!

[SCORED'25 at CCS'25] Aggregating Security Measures from the Dependency Tree

Sarah Elder; Alex Klevans; Ranindya Paramitha; Marcello d'Amorim; Laurie Williams
ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses (SCORED) 2025
Co-Located with The ACM Conference on Computer and Communications Security (CCS) 2025

[FSE'25] Today’s Cat Is Tomorrow’s Dog: Accounting for Time-Based Changes in the Labels of ML Vulnerability Detection Approaches

Ranindya Paramitha; Yuan Feng; Fabio Massacci
Foundations of Software Engineering (FSE) 2025

[TOSEM'24] Research Directions in Software Supply Chain Security

Laurie Williams, et al.
Transactions on Software Engineering and Methodology

[ESEJ'24] On the acceptance by code reviewers of candidate security patches suggested by Automated Program Repair tools

Aurora Papotti; Ranindya Paramitha; Fabio Massacci
Empirical Software Engineering
Registered Report from EMSE'22

[MSR'24 Data/Tool] Hash4Patch: A Lightweight Low False Positive Approach to Find Vulnerability Patch Commits

Simone Scalco; Ranindya Paramitha
Mining Software Repositories (MSR) 2024

[IEEE S&P'24] Known Vulnerabilities of Open Source Projects: Where Are the Fixes?

Antonino Sabetta, et al.
IEEE Security & Privacy 2024

[JSS'24] Addressing combinatorial experiments and scarcity of subjects by provably orthogonal and crossover experimental designs

Fabio Massacci; Aurora Papotti; Ranindya Paramitha
Journal of Systems and Software 2024

[ESEJ'24] APR4Vul: An empirical study of APR techniques on real-world Java vulnerabilities

Quang-Cuong Bui; Ranindya Paramitha; Duc-Ly Vu; Fabio Massacci; Riccardo Scandariato
Empirical Software Engineering
Presented as a Journal First in ICSE 2024

[ESEJ'23]Technical leverage analysis in the Python ecosystem

Ranindya Paramitha; Fabio Massacci
Empirical Software Engineering
Presented as a Journal First in ICSE 2024

[ARES IWCSEC'22]On the feasibility of detecting injections in malicious npm packages

Simone Scalco; Ranindya Paramitha; Duc-Ly Vu; Fabio Massacci
Proceedings of the 17th International Conference on Availability, Reliability and Security (ARES IWCSEC 2022)

[ARES IWCSEC'22] Lightweight Parsing and Slicing for Bug Identification in C

Luca Mecenero; Ranindya Paramitha; Ivan Pashchenko; Fabio Massacci
Proceedings of the 17th International Conference on Availability, Reliability and Security (ARES IWCSEC 2022)

[ICoDSE'21] Mining Software Repository for Security Smell Code Review

Ranindya Paramitha; Yudistira Dwi Wardhana Asnar
2021 International Conference on Data and Software Engineering (ICoDSE)

[ICoDSE'21] Static Code Analysis Tool for Laravel Framework Based Web Application

Ranindya Paramitha; Yudistira Dwi Wardhana Asnar
2021 International Conference on Data and Software Engineering (ICoDSE)