Justin Smith

Publications

• How Students Unit Test: Perceptions, Practices, and Pitfalls
• Towards Ethical Data-Driven Software: Filling the Gaps in Ethics Research & Practice
• MatchingRef
• A Case Study of Software Security Red Teams at Microsoft
• A cross-Tool communication study on program analysis tool notifications
• What Questions Remain? An Examination of How Developers Understand an Interactive Static Analysis Tool
• Flower: Navigating program flow in the IDE
• Fuse: A reproducible, extendable, internet-scale corpus of spreadsheets
• Identifying successful strategies for resolving static analysis notifications
• Supporting effective strategies for resolving vulnerabilities reported by static analysis tools
• Cheetah: Just-in-time taint analysis for android apps
• Questions developers ask while diagnosing potential security vulnerabilities with static analysis
• Do Developers Read Compiler Error Messages?
• Does ACM's code of ethics change ethical decision making in software development?
• How Developers Diagnose Potential Security Vulnerabilities with a Static Analysis Tool
• Just-in-time static analysis
• Resolving input validation vulnerabilities by retracing taint flow through source code
• Paradise unplugged: Identifying barriers for female participation on stack overflow
• Spreadsheet practices and challenges in a large multinational conglomerate
• A study of interactive code annotation for access control vulnerabilities
• Why Can't Johnny Fix Vulnerabilities: A Usability Evaluation of Static Analysis Tools for Security