Authors:
Rajdeep Ghosh, Indian Institute of Technology Kharagpur; Shiladitya De, Indian Institute of Technology, Kharagpur; Mainack Mondal, Indian Institute of Technology Kharagpur
"I wasn't sure if this is indeed a security risk": Data-driven Understanding of Security Issue Reporting in GitHub Repositories of Open Source npm Packages