Many FOSS popularity metrics such as commits, downloads, and dependencies can be spoofed with low to moderate effort, supported by a documented large-scale npm sybil attack.
In: Proceedings of the 4th international conference on Security and privacy in communication netowrks
1 Pith paper cite this work. Polarity classification is still indexing.
1
Pith paper citing it
fields
cs.CR 1years
2025 1verdicts
CONDITIONAL 1representative citing papers
citing papers explorer
-
How Reliable Are FOSS Popularity Metrics? Analyzing the Effort Required for Spoofing Common Software Popularity Metrics
Many FOSS popularity metrics such as commits, downloads, and dependencies can be spoofed with low to moderate effort, supported by a documented large-scale npm sybil attack.