Lange Laube 6 30159 Hannover (Germany)
Attributing Open-Source Contributions is Critical but Difficult: A Systematic Analysis of GitHub Practices and Their Impact on Software Supply Chain Security.
Network and Distributed System Security Symposium (NDSS)
