Dataset: Security vulnerabilities in open-source reused systems

  • Antonios Gkortzis (Creator)
  • Daniel Feitosa (Creator)
  • Diomidis Spinellis (Creator)



This dataset comprise 2017 Java projects. It contains information related to their external dependencies and its potential and disclosed security vulnerabilities.
The potential vulnerabilities were detected with the use of the SpotBugs static analyzer tool, while the disclosed ones with the use of OWASP Dependency Check tool.
This dataset was generated during a research effort to correlate software reuse to security vulnerabilities.
The scripts for reproducing the dataset and analyzing it are available on GitHub under this link [].
Date made available3-Nov-2019
PublisherUniversity of Groningen

Keywords on Datasets

  • Security
  • open source
  • Java
  • OWASP Dependency Check
  • SpotBugs static analyzer

Cite this