Survey on Governance Technology of Open-source Software Library Ecosystem: Twenty Years of Progress

被引：0

作者：

Wang Y. ^{[1
,3
,5
]}

Wu Y.-X. ^{[1
]}

Gao T. ^{[1
]}

Chen Z.-Y. ^{[1
]}

Xu C. ^{[2
,3
]}

Yu H. ^{[1
,4
]}

Cheung S.-C. ^{[5
]}

机构：

[1] Software College, Northeastern University, Shenyang

[2] Department of Computer Science and Technology, Nanjing University, Nanjing

[3] State Key Laboratory for Novel Software Technology (Nanjing University, Nanjing

[4] Key Laboratory of Data Analytics and Optimization for Smart Industry, Ministry of Education, Frontier Science Center for Industrial Intelligence and System Optimization, Northeastern University, Shenyang

[5] Department of Computer Science and Engineering, Hong Kong University of Science and Technology

来源：

Ruan Jian Xue Bao/Journal of Software | 2024年 / 35卷 / 02期

关键词：

open-source governance; open-source software supply chain; software library ecosystem;

D O I：

10.13328/j.cnki.jos.006983

中图分类号：

学科分类号：

摘要：

Under the new era of “human-machine-thing” ternary integration and ubiquitous computing, the software deployment and operation environment of “open and changeable”, “diverse needs”, and “complex scenarios” have put forward more requirements and higher expectations for the governance of open-source software library ecosystems. To further promote the construction of trusted software supply chain ecosystems and create an independent and controllable technical system based on the ubiquitous computing model, this study focuses on open-source software library ecosystems. It collects 348 authoritative papers in this field in the past two decades (2001–2023); and sorts out the research work of open-source software library management ecological governance technology. The study discusses the modeling and analysis, evolution and maintenance, quality assurance, and management of open-source software supply chain ecosystems, and summarizes the research status, problems, challenges and trends. © 2024 Chinese Academy of Sciences. All rights reserved.

引用

页码：629 / 674

页数：45

共 171 条

[1] Mei H, Cao DG, Xie T., Ubiquitous operating system: Toward the blue ocean of human-cyber-physical ternary ubiquitous computing, Bulletin of Chinese Academy of Sciences, 37, 1, pp. 30-37, (2022)
[2] Liang GY, Wu YJ, Wu JZ, Zhao C., Open source software supply chain for reliability assurance of operating systems, Ruan Jian Xue Bao/Journal of Software, 31, 10, pp. 3056-3073, (2020)
[3] Jin Z, Zhou MH, Zhang YX., Open source software and its eco-systems: Today and tommorow, Science & Technology Review, 34, 14, pp. 42-48, (2016)
[4] Xu C, Qin Y, Yu P, Cao C, Lu J., Theories and techniques for growing software: Paradigm and beyond, Scientia Sinica Informationis, 50, 11, pp. 1595-1611, (2020)
[5] Abate P, Di Cosmo R, Gousios G, Zacchiroli S., Dependency solving is still hard, but we are getting better at it, Proc. of the 27th IEEE Int’l Conf. on Software Analysis, Evolution and Reengineering (SANER), pp. 547-551, (2020)
[6] Welcome to Apache Maven, (2023)
[7] Abate P, Di Cosmo R, Treinen R, Zacchiroli S., Dependency solving: A separate concern in component evolution management, Journal of Systems and Software, 85, 10, pp. 2228-2240, (2012)
[8] Abate P, DiCosmo R, Treinen R, Zacchiroli S., MPM: A modular package manager, Proc. of the 14th Int’l ACM SIGSOFT Symp. on Component based Software Engineering, pp. 179-188, (2011)
[9] Tucker C, Shuffelton D, Jhala R, Lerner S., OPIUM: Optimal package install/uninstall manager, Proc. of the 29th Int’l Conf. on Software Engineering (ICSE 2007), pp. 178-188, (2007)
[10] Miranda A, Pimentel J., On the use of package managers by the C++ open-source community, Proc. of the 33rd Annual ACM Symp. on Applied Computing, pp. 1483-1491, (2018)

← 1 2 3 4 5 6 7 8 9 10 →