DOCSLIB.ORG

Third Party Software Component List: Targeted Use: Briefcam® Fulfillment of License Obligation for All Open Sources: Yes

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

Third Party Software Component List: Targeted use: BriefCam® Fulfillment of license obligation for all open sources: Yes Name Link and Copyright Notices Where Available License Type OpenCV https://opencv.org/license.html 3-Clause Copyright (C) 2000-2019, Intel Corporation, all BSD rights reserved. Copyright (C) 2009-2011, Willow Garage Inc., all rights reserved. Copyright (C) 2009-2016, NVIDIA Corporation, all rights reserved. Copyright (C) 2010-2013, Advanced Micro Devices, Inc., all rights reserved. Copyright (C) 2015-2016, OpenCV Foundation, all rights reserved. Copyright (C) 2015-2016, Itseez Inc., all rights reserved. Apache Logging http://logging.apache.org/log4cxx/license.html Apache Copyright © 1999-2012 Apache Software Foundation License V2 Google Test https://github.com/abseil/googletest/blob/master/google BSD* test/LICENSE Copyright 2008, Google Inc. SAML 2.0 component for https://github.com/jitbit/AspNetSaml/blob/master/LICEN MIT ASP.NET SE Copyright 2018 Jitbit LP Nvidia Video Codec https://github.com/lu-zero/nvidia-video- MIT codec/blob/master/LICENSE Copyright (c) 2016 NVIDIA Corporation FFMpeg 4 https://www.ffmpeg.org/legal.html LesserGPL FFmpeg is a trademark of Fabrice Bellard, originator v2.1 of the FFmpeg project 7zip.exe https://www.7-zip.org/license.txt LesserGPL 7-Zip Copyright (C) 1999-2019 Igor Pavlov v2.1/3- Clause BSD Infralution.Localization.Wp http://www.codeproject.com/info/cpol10.aspx CPOL f Copyright (C) 2018 Infralution Pty Ltd directShowlib .net https://github.com/pauldotknopf/DirectShow.NET/blob/ LesserGPL master/license.txt v2 Copyright (C) 1991, 1999 Free Software Foundation, Inc. ImpromptuInterface.FShar https://github.com/ekonbenefits/impromptu- Apache p.dll interface/blob/master/License.txt License V2 libxml2 http://xmlsoft.org/FAQ.html#License MIT Copyright (C) 1998-2003 Daniel Veillard 1 Extended.Wpf.Toolkit https://github.com/xceedsoftware/wpftoolkit/blob/maste Microsoft r/license.md Public License (MS-PL) List Box Drag selection http://www.codeproject.com/info/cpol10.aspx CPOL Libjpeg-Turbo https://github.com/libjpeg-turbo/libjpeg- BSD turbo/blob/master/LICENSE.md Copyright (C)2009-2019 D. R. Commander Copyright (C)2015 Viktor Szathmáry BmffViewer https://github.com/jeremypoulter/basemedia/blob/maste MIT r/BMFF/BmffViewer/LICENSE.txt Copyright (c) 2011, Matrix.IO, LLC and the CSJ2K and BMFF Teams https://github.com/yahoo/caffe/blob/master/LICENSE Caffe Copyright (c) 2014-2017 The Regents of the University BSD v2 of California (Regents) OpenMP https://github.com/llvm- UIUC mirror/openmp/blob/master/LICENSE.txt (BSD-like), Copyright (c) 1997-2019 Intel Corporation MIT LZ4 https://github.com/lz4/lz4/blob/dev/lib/LICENSE 2-Clause Copyright (c) 2011-2016, Yann Collet BSD LibZ https://github.com/MiloszKrajewski/LibZ/blob/master/LIC Microsoft ENSE.md Public Copyright (c) 2015 Milosz Krajewski License (MS-PL), Zlib Boost V1.0 http://www.boost.org/users/license.html Boost https://github.com/learn- gflags more/gflags/blob/master/LICENSE MIT Copyright (c) 2015 Mark Jansen glog https://github.com/google/glog/blob/master/COPYING BSD Copyright (c) 2008, Google Inc. Copyright (c) 2003-2008, Jouni Malinen <[email protected]> and contributors hdf5 https://support.hdfgroup.org/ftp/HDF5/releases/COPYIN HDF5 G Copyright (c) 2006-2018, The HDF Group Copyright (c) 1998-2006, The Board of Trustees of the University of Illinois leveldb https://github.com/google/leveldb/blob/master/LICENSE 2-Clause Copyright (c) 2011 The LevelDB Authors BSD * lmdb http://www.lmdb.tech/doc/ OpenLDAP Copyright 2011-2015 Howard Chu, Symas Corp. All rights reserved. OpenBLAS https://github.com/xianyi/OpenBLAS/blob/develop/LICEN 3-Clause SE BSD Copyright (c) 2011-2014, The OpenBLAS Project protobuf https://github.com/protocolbuffers/protobuf/blob/maste 3-Clause r/LICENSE BSD Copyright 2008 Google Inc. tbb https://github.com/wjakob/tbb/blob/master/LICENSE Apache 2 License 2.0 yasm https://github.com/yasm/yasm/blob/master/COPYING 2-Clause Copyright (c) 2001-2014 Peter Johnson and other Yasm BSD developers Lato fonts http://scripts.sil.org/cms/scripts/page.php?site_id=nrsi&i OFL-1.1 d=OFL_web Copyright (c) 2010-2011 by tyPoland Lukasz Dziedzic with Reserved Font Name "Lato" Dlib http://dlib.net/license.html Boost jsoncpp https://github.com/open-source-parsers/jsoncpp MIT Copyright (c) 2007-2010 by Baptiste Lepilleur and The JsonCpp Authors jQuery JavaScript Library https://jquery.org/license MIT Copyright 2019 The jQuery Foundation Sizzle.js https://github.com/jquery/sizzle/blob/master/LICENSE.txt MIT Copyright JS Foundation and other contributors Angular JS https://github.com/angular/angular.js/blob/master/LICEN MIT SE Copyright (c) 2010-2019 Google, Inc. http://angularjs.org NuGet https://docs.microsoft.com/en-us/nuget/policies/nuget- MIT faq Copyright (c) Microsoft Corporation matchMedia polyfill https://github.com/paulirish/matchMedia.js/blob/master/ Dual LICENSE.txt MIT/BSD Copyright (c) 2012 Scott Jehl Modernizr v2.6.2 www.modernizr.com/license/ MIT Copyright (c) 2009-2018 Bootstrap v3.3.7 https://github.com/twbs/bootstrap/blob/master/LICENSE MIT Copyright (c) 2011-2019 Twitter, Inc. Copyright (c) 2011-2019 The Bootstrap Authors Respond.js v1.4.2 https://github.com/scottjehl/Respond/blob/master/LICEN MIT SE-MIT Copyright (c) 2012 Scott Jehl Material Design Data https://github.com/daniel-nagy/md-data- MIT Table table/blob/master/LICENSE.md Copyright (c) 2015 Daniel Nagy angular-material-icons https://github.com/klarsys/angular-material- MIT icons/blob/master/LICENSE Copyright (c) 2014 urmilparikh angular-strap https://github.com/mgcrea/angular- MIT strap/blob/master/LICENSE.md Copyright (c) 2012-2014 Olivier Louvignes http://olouv.com jcanvas https://github.com/caleb531/jcanvas/blob/master/LICENS MIT E.txt Copyright (c) 2017 Caleb Evans Font-Awesome https://github.com/FortAwesome/Font- CC BY 4.0, Awesome/blob/master/LICENSE.txt SIL OFL 1.1, MIT 3 bower-angular-messages https://github.com/angular/bower-angular- MIT messages/blob/master/LICENSE.md Copyright (c) 2016 Angular freewall https://github.com/kombai/freewall/blob/master/license. MIT md Copyright (c) 2016 Minh Nguyen angular-ui-router-anim-in- https://github.com/homerjam/angular-ui-router-anim-in- MIT out out angular-trix https://github.com/sachinchoolur/angular- MIT trix/blob/master/LICENSE Copyright (c) 2015 Sachin N Trix https://github.com/basecamp/trix/blob/master/LICENSE MIT Copyright (c) 2019 Basecamp, LLC Responsive jQuery Image https://github.com/jssor/slider/blob/master/LICENSE.txt MIT Slider/Slideshow/Carousel Copyright (c) 2018 jssor /Gallery/Banner (JSSOR) jquery-awesome-cursor https://github.com/jwarby/jquery-awesome- MIT cursor/blob/master/LICENSE.txt Copyright (c) 2014 James Warwood Highcharts Export plugin https://github.com/highcharts/export- MIT csv/blob/master/LICENSE Copyright (c) 2013-2017 Highsoft Moment https://github.com/moment/moment/blob/develop/LICE MIT NSE Copyright (c) JS Foundation and other contributors html5boilerplate https://github.com/h5bp/html5- MIT boilerplate/blob/master/LICENSE.txt Copyright (c) HTML5 Boilerplate Apache Server Configs https://github.com/h5bp/server-configs- MIT apache/blob/master/LICENSE.txt Copyright (c) H5BP hardcodet.net NotifyIcon https://www.codeproject.com/Articles/36468/WPF- CPOL for WPF NotifyIcon-2 angular-filter https://github.com/a8m/angular- MIT filter/blob/master/license.md Copyright (c) 2015 Ariel Mashraki Angular UI https://github.com/angular-ui/ui- MIT router/blob/master/LICENSE Copyright (c) 2013-2018 The AngularUI Team, Karsten Sperling video-dev/hls.js https://github.com/video-dev/hls.js/blob/master/LICENSE Apache Copyright (c) 2017 Dailymotion License V2 (http://www.dailymotion.com) Jsoncpp https://github.com/open-source- Public parsers/jsoncpp/blob/master/LICENSE Domain/MI Copyright (c) 2007-2010 by Baptiste Lepilleur and The T JsonCpp Authors Knockout JavaScript https://github.com/knockout/knockout/blob/master/LICE MIT library NSE Copyright (c) Steven Sanderson, the Knockout.js team, and other contributors http://knockoutjs.com/ 4 NvEncodeAPI.h https://github.com/NVIDIA/NvPipe/blob/master/LICENSE “Free, as Copyright (c) 2018 NVIDIA CORPORATION Is” angular-motion https://github.com/mgcrea/angular- MIT motion/blob/master/LICENSE.md Copyright (c) 2014 Olivier Louvignes http://olouv.com HTML5 Element Shim for https://github.com/es-shims/es5- MIT IE8 shim/blob/master/LICENSE Copyright (c) 2009-2016 Kristopher Michael Kowal and contributors Video.js https://github.com/videojs/video.js/blob/master/LICENSE Apache Copyright Brightcove, Inc. License V2 Core-js https://github.com/zloirock/core-js/blob/master/LICENSE MIT Copyright (c) 2014-2019 Denis Pushkarev aspnet/jquery-ajax- https://github.com/aspnet/jquery-ajax- Apache unobtrusive unobtrusive/blob/master/LICENSE.txt License V2 Copyright (c) Microsoft Open Technologies, Inc. Silk icons http://www.famfamfam.com/lab/icons/silk/ Creative Commons Attribution 2.5 jQuery Validation Plugin https://github.com/jquery-validation/jquery- MIT validation/blob/master/LICENSE.md Copyright Jörn Zaefferer systemjs https://github.com/systemjs/systemjs/blob/master/LICEN MIT SE Copyright (C) 2013-2018 Guy Bedford Gulp https://github.com/gulpjs/gulp/blob/master/LICENSE MIT Copyright (c) 2013-2018 Blaine Bublitz <[email protected]>, Eric Schoffstall <[email protected]> and other contributors Reactive-Extensions/RxJS https://github.com/Reactive- Apache Extensions/RxJS/blob/master/license.txt License V2 Copyright (c) Microsoft. Microsoft Open Technologies would like to thank
Recommended publications
  • Working with Unreliable Observers Using Reactive Extensions

    Working with Unreliable Observers Using Reactive Extensions

    Master thesis WORKING WITH UNRELIABLE OBSERVERS USING REACTIVE EXTENSIONS November 10, 2016 Dorus Peelen (s4167821) Computing science Radboud University [email protected] — Supervisors: Radboud University: Rinus Plasmeijer Aia Software: Jeroen ter Hofstede Contents 1 Introduction 5 1.1 Overview of thesis . .7 2 Background 8 2.1 Aia Software . .8 2.2 Current situation . .8 2.3 The use case . .9 2.3.1 Technical details . 10 2.3.2 Potential problems . 11 2.4 Problem description . 11 2.5 Desired Properties of the new system . 11 3 Overview of Rx 13 3.1 Basic Ideas of Rx . 13 3.2 Observer and Observable . 15 3.3 Hot vs Cold observables . 15 3.4 Marble diagrams . 16 3.5 Transformations on Event Streams . 16 3.6 Schedulers . 16 3.7 Control process in Rx . 17 3.8 Interactive vs reactive . 18 3.9 Push-back and backpressure . 18 3.10 Operators with unbounded Queue . 19 3.11 Explanation and example of different operators in Rx . 19 3.11.1 Select .................................. 19 3.11.2 SelectMany ............................... 20 3.11.3 Where .................................. 20 3.11.4 Delay .................................. 20 3.11.5 Merge and Concat ........................... 21 3.11.6 Buffer and Window ........................... 21 3.11.7 GroupBy ................................. 21 3.11.8 Amb .................................... 21 3.11.9 Debounce, Sample and Throttle ................... 22 3.11.10 ObserveOn ................................ 22 3.12 Related work . 22 3.12.1 TPL . 23 3.12.2 iTasks . 23 4 The experiment 25 4.1 Important properties . 25 4.2 Test architecture . 26 4.2.1 Design . 26 2 4.2.2 Concepts .
  • An Opinionated Guide to Technology Frontiers

    An Opinionated Guide to Technology Frontiers

    TECHNOLOGY RADAR An opinionated guide to technology frontiers Volume 24 #TWTechRadar thoughtworks.com/radar The Technology Advisory Board (TAB) is a group of 20 senior technologists at Thoughtworks. The TAB meets twice a year face-to-face and biweekly by phone. Its primary role is to be an advisory group for Thoughtworks CTO, Contributors Rebecca Parsons. The Technology Radar is prepared by the The TAB acts as a broad body that can look at topics that affect technology and technologists at Thoughtworks. With the ongoing global pandemic, we Thoughtworks Technology Advisory Board once again created this volume of the Technology Radar via a virtual event. Rebecca Martin Fowler Bharani Birgitta Brandon Camilla Cassie Parsons (CTO) (Chief Scientist) Subramaniam Böckeler Byars Crispim Shum Erik Evan Fausto Hao Ian James Lakshminarasimhan Dörnenburg Bottcher de la Torre Xu Cartwright Lewis Sudarshan Mike Neal Perla Rachel Scott Shangqi Zhamak Mason Ford Villarreal Laycock Shaw Liu Dehghani TECHNOLOGY RADAR | 2 © Thoughtworks, Inc. All Rights Reserved. About the Radar Thoughtworkers are passionate about technology. We build it, research it, test it, open source it, write about it and constantly aim to improve it — for everyone. Our mission is to champion software excellence and revolutionize IT. We create and share the Thoughtworks Technology Radar in support of that mission. The Thoughtworks Technology Advisory Board, a group of senior technology leaders at Thoughtworks, creates the Radar. They meet regularly to discuss the global technology strategy for Thoughtworks and the technology trends that significantly impact our industry. The Radar captures the output of the Technology Advisory Board’s discussions in a format that provides value to a wide range of stakeholders, from developers to CTOs.
  • Front-End Development with ASP.NET Core, Angular, And

    Front-End Development with ASP.NET Core, Angular, And

    Table of Contents COVER TITLE PAGE FOREWORD INTRODUCTION WHY WEB DEVELOPMENT REQUIRES POLYGLOT DEVELOPERS WHO THIS BOOK IS FOR WHAT THIS BOOK COVERS HOW THIS BOOK IS STRUCTURED WHAT YOU NEED TO USE THIS BOOK CONVENTIONS SOURCE CODE ERRATA 1 What’s New in ASP.NET Core MVC GETTING THE NAMES RIGHT A BRIEF HISTORY OF THE MICROSOFT .NET WEB STACK .NET CORE INTRODUCING ASP.NET CORE NEW FUNDAMENTAL FEATURES OF ASP.NET CORE AN OVERVIEW OF SOME ASP.NET CORE MIDDLEWARE ASP.NET CORE MVC SUMMARY 2 The Front‐End Developer Toolset ADDITIONAL LANGUAGES YOU HAVE TO KNOW JAVASCRIPT FRAMEWORKS CSS FRAMEWORKS PACKAGE MANAGERS TASK RUNNERS SUMMARY 3 Angular in a Nutshell ANGULAR CONCEPTS THE LANGUAGE OF ANGULAR SETTING UP AN ANGULAR PROJECT THE STRUCTURE OF AN ANGULAR APP DATA BINDING DIRECTIVES SERVICES AND DEPENDECY INJECTION MULTIPLE COMPONENTS INPUT AND OUTPUT PROPERTIES TALKING TO THE BACK END USING ANGULAR WITH ASP.NET MVC VISUAL STUDIO 2017 SUPPORT FOR ANGULAR SUMMARY 4 Bootstrap in a Nutshell INTRODUCTION TO BOOTSTRAP BOOTSTRAP STYLES COMPONENTS JAVASCRIPT CUSTOMIZING BOOTSTRAP WITH LESS BOOTSTRAP SUPPORT IN VISUAL STUDIO 2017 AND ASP.NET CORE SUMMARY 5 Managing Dependencies with NuGet and Bower GENERAL CONCEPTS NUGET NPM (NODE.JS PACKAGE MANAGER) BOWER SUMMARY 6 Building Your Application with Gulp and webpack WHAT FRONT‐END BUILD SYSTEMS ARE FOR A DEEPER LOOK AT GULP INTRODUCTION TO WEBPACK VISUAL STUDIO 2017 AND BUILD SYSTEMS SUMMARY 7 Deploying ASP.NET Core THE NEW HOSTING MODEL OF ASP.NET CORE INSTALLING ON INTERNET INFORMATION SERVICES ON PREMISE
  • Rxada: an Ada Implementation of the Reactivex API - 1 PREVIOUSLY, in ADA-EUROPE 2007

    Rxada: an Ada Implementation of the Reactivex API - 1 PREVIOUSLY, in ADA-EUROPE 2007

    RxAda: An Ada implementation of the ReactiveX API Alejandro R. Mosteo 2017-jun-13 2017-jun-13 - RxAda: An Ada implementation of the ReactiveX API - 1 PREVIOUSLY, IN ADA-EUROPE 2007... SANCTA: An Ada 2005 General-Purpose Architecture for Mobile Robotics Research 2017-jun-13 - RxAda: An Ada implementation of the ReactiveX API - 2 ABOUT ME Robotics, Perception, and Real-Time group (RoPeRT) http://robots.unizar.es/ Universidad de Zaragoza, Spain 2017-jun-13 - RxAda: An Ada implementation of the ReactiveX API - 3 CONTENTS • Motivation • What is ReactiveX – Language agnostic – Java – Ada • RxAda – Design challenges/decisions – Current implementation status – Future steps 2017-jun-13 - RxAda: An Ada implementation of the ReactiveX API - 4 PERSONAL MOTIVATION • Android development – Questionable design decisions for background tasks that interact with the GUI • Found RxJava – Simpler, saner way of doing multitasking – Documented comprehensively – Very active community in the Rx world • Achievable in Ada? – Aiming for the RxJava simplicity of use 2017-jun-13 - RxAda: An Ada implementation of the ReactiveX API - 5 EVENT-DRIVEN / ASYNCHRONOUS SYSTEMS <User drags map> ↓ Find nearby items ↓⌛ Request images ↓⌛↓⌛↓⌛↓⌛ Crop/Process image ↓⌛ Update GUI markers 2017-jun-13 - RxAda: An Ada implementation of the ReactiveX API - 6 OVERVIEW Event-driven systems ↓ Reactive Programming (philosophy) ↓ ReactiveX / Rx (specification) ↓ Rx.Net, RxJava, RxJS, RxC++, … ↓ RxAda 2017-jun-13 - RxAda: An Ada implementation of the ReactiveX API - 7 REACTIVE MANIFESTO (2014-sep-16
  • ** OPEN SOURCE LIBRARIES USED in Tv.Verizon.Com/Watch

    ** OPEN SOURCE LIBRARIES USED in Tv.Verizon.Com/Watch

    ** OPEN SOURCE LIBRARIES USED IN tv.verizon.com/watch ------------------------------------------------------------ 02/27/2019 tv.verizon.com/watch uses Node.js 6.4 on the server side and React.js on the client- side. Both are Javascript frameworks. Below are the licenses and a list of the JS libraries being used. ** NODE.JS 6.4 ------------------------------------------------------------ https://github.com/nodejs/node/blob/master/LICENSE Node.js is licensed for use as follows: """ Copyright Node.js contributors. All rights reserved. Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. """ This license applies to parts of Node.js originating from the https://github.com/joyent/node repository: """ Copyright Joyent, Inc. and other Node contributors.
  • Npm Packages As Ingredients: a Recipe-Based Approach

    Npm Packages As Ingredients: a Recipe-Based Approach

    npm Packages as Ingredients: a Recipe-based Approach Kyriakos C. Chatzidimitriou, Michail D. Papamichail, Themistoklis Diamantopoulos, Napoleon-Christos Oikonomou, and Andreas L. Symeonidis Electrical and Computer Engineering Dept., Aristotle University of Thessaloniki, Thessaloniki, Greece fkyrcha, mpapamic, thdiaman, [email protected], [email protected] Keywords: Dependency Networks, Software Reuse, JavaScript, npm, node. Abstract: The sharing and growth of open source software packages in the npm JavaScript (JS) ecosystem has been exponential, not only in numbers but also in terms of interconnectivity, to the extend that often the size of de- pendencies has become more than the size of the written code. This reuse-oriented paradigm, often attributed to the lack of a standard library in node and/or in the micropackaging culture of the ecosystem, yields interest- ing insights on the way developers build their packages. In this work we view the dependency network of the npm ecosystem from a “culinary” perspective. We assume that dependencies are the ingredients in a recipe, which corresponds to the produced software package. We employ network analysis and information retrieval techniques in order to capture the dependencies that tend to co-occur in the development of npm packages and identify the communities that have been evolved as the main drivers for npm’s exponential growth. 1 INTRODUCTION Given that dependencies and reusability have be- come very important in today’s software develop- The popularity of JS is constantly increasing, and ment process, npm registry has become a “must” along is increasing the popularity of frameworks for place for developers to share packages, defining code building server (e.g.
  • Coverity Static Analysis

    Coverity Static Analysis

    Coverity Static Analysis Quickly find and fix Overview critical security and Coverity® gives you the speed, ease of use, accuracy, industry standards compliance, and quality issues as you scalability that you need to develop high-quality, secure applications. Coverity identifies code critical software quality defects and security vulnerabilities in code as it’s written, early in the development process when it’s least costly and easiest to fix. Precise actionable remediation advice and context-specific eLearning help your developers understand how to fix their prioritized issues quickly, without having to become security experts. Coverity Benefits seamlessly integrates automated security testing into your CI/CD pipelines and supports your existing development tools and workflows. Choose where and how to do your • Get improved visibility into development: on-premises or in the cloud with the Polaris Software Integrity Platform™ security risk. Cross-product (SaaS), a highly scalable, cloud-based application security platform. Coverity supports 22 reporting provides a holistic, more languages and over 70 frameworks and templates. complete view of a project’s risk using best-in-class AppSec tools. Coverity includes Rapid Scan, a fast, lightweight static analysis engine optimized • Deployment flexibility. You for cloud-native applications and Infrastructure-as-Code (IaC). Rapid Scan runs decide which set of projects to do automatically, without additional configuration, with every Coverity scan and can also AppSec testing for: on-premises be run as part of full CI builds with conventional scan completion times. Rapid Scan can or in the cloud. also be deployed as a standalone scan engine in Code Sight™ or via the command line • Shift security testing left.
  • Santiago Quintero Pabón –

    Santiago Quintero Pabón –

    LIX - École Polytechnique Palaiseau Santiago Quintero France Æ +33 (0) 7 67 39 73 30 Pabón Q [email protected] Contact Information Last Name: Quintero Pabón Given Name: Santiago Birth Date: 21-oct-1994 Nationality: Colombian Education Pontificia Universidad Javeriana Cali, CO + Five years B.Sc. Degree in Computer Science and Engineering, (equivalent to a master degree) 2012-2017 École Polytechnique Palaiseau, FR + PhD in Computer Sciences, Thesis: "Foundational approach to computation in today’s systems" 2018-Current Supervisors: Catuscia Palamidessi, Frank Valencia. Work Experience COMETE at LIX, École Polytechnique Palaiseau, FR + PhD Student 2018-Current AVISPA research group at Pontificia Universidad Javeriana Cali, CO + Research Assistant 2018 PORTAL ACTUALICESE.COM S.A.S. Cali, CO + Development Analyst 2017-2018 COMETE research group at Inria-Saclay Palaiseau, FR + Research Intern November 2017 Pontificia Universidad Javeriana Cali, CO + Teaching Assistant 2014-2016 Teaching Assistant....................................................................................................... Courses: Introduction to Programming, Programming Fundamentals and Structures, Logic in Computer Science, Computability and Formal Languages, Introduction to Systems Modeling. Major Projects............................................................................................................. + October 2015 - June 2016: ’Financial inclusion for the emerging middle class in Colombia’ Designed, prototyped and developed a financial
  • Enhancement of a Vulnerability Checker for Software Libraries with Similarity Metrics Based on File-Hashes

    Enhancement of a Vulnerability Checker for Software Libraries with Similarity Metrics Based on File-Hashes

    Gottfried Wilhelm Leibniz Universität Hannover Faculty of Electrical Engineering and Computer Science Institute of Practical Computer Science Software Engineering Group Enhancement of a Vulnerability Checker for Software Libraries with Similarity Metrics based on File-Hashes Bachelor Thesis in Computer Science by Huu Kim Nguyen First Examiner: Prof. Dr. Kurt Schneider Second Examiner: Dr. Jil Klünder Supervisor: M.Sc. Fabien Patrick Viertel Hannover, March 19, 2020 ii Declaration of Independence I hereby certify that I have written the present bachelor thesis independently and without outside help and that I have not used any sources and aids other than those specified in the work. The work has not yet been submitted to any other examination office in the same or similar form. Hannover, March 19, 2020 _____________________________________ Huu Kim Nguyen iii iv Abstract This bachelor thesis presents a software which checks a software project for libraries that have security vulnerabilities so the user is notified to update them. External software libraries and frameworks are used in websites and other software to provide new functionality. Using outdated and vulnerable libraries poses a large risk to developers and users. Finding vulnerabilities should be part of the software development. Manually finding vulnerable libraries is a time consuming process. The solution presented in this thesis is a vulnerability checker which scans the project library for any libraries that contain security vulnerabilities provided that the software project is written in Java or in JavaScript. It uses hash signatures obtained from these libraries to check against a database that has hash signatures of libraries that are known to have security vulnerabilities.
  • Investigating the Reproducbility of NPM Packages

    Investigating the Reproducbility of NPM Packages

    Investigating the Reproducbility of NPM packages Pronnoy Goswami Thesis submitted to the Faculty of the Virginia Polytechnic Institute and State University in partial fulfillment of the requirements for the degree of Master of Science in Computer Engineering Haibo Zeng, Chair Na Meng Paul E. Plassmann May 6, 2020 Blacksburg, Virginia Keywords: Empirical, JavaScript, NPM packages, Reproducibility, Software Security, Software Engineering Copyright 2020, Pronnoy Goswami Investigating the Reproducbility of NPM packages Pronnoy Goswami (ABSTRACT) The meteoric increase in the popularity of JavaScript and a large developer community has led to the emergence of a large ecosystem of third-party packages available via the Node Package Manager (NPM) repository which contains over one million published packages and witnesses a billion daily downloads. Most of the developers download these pre-compiled published packages from the NPM repository instead of building these packages from the available source code. Unfortunately, recent articles have revealed repackaging attacks to the NPM packages. To achieve such attacks the attackers primarily follow three steps – (1) download the source code of a highly depended upon NPM package, (2) inject mali- cious code, and (3) then publish the modified packages as either misnamed package (i.e., typo-squatting attack) or as the official package on the NPM repository using compromised maintainer credentials. These attacks highlight the need to verify the reproducibility of NPM packages. Reproducible Build is a concept that allows the verification of build artifacts for pre-compiled packages by re-building the packages using the same build environment config- uration documented by the package maintainers. This motivates us to conduct an empirical study (1) to examine the reproducibility of NPM packages, (2) to assess the influence of any non-reproducible packages, and (3) to explore the reasons for non-reproducibility.
  • Javascript Frameworks for Modern Web Development the Essential Frameworks, Libraries, and Tools to Learn Right Now Second Edition

    Javascript Frameworks for Modern Web Development the Essential Frameworks, Libraries, and Tools to Learn Right Now Second Edition

    JavaScript Frameworks for Modern Web Development The Essential Frameworks, Libraries, and Tools to Learn Right Now Second Edition Sufyan bin Uzayr Nicholas Cloud Tim Ambler JavaScript Frameworks for Modern Web Development Sufyan bin Uzayr Nicholas Cloud Al Manama, United Arab Emirates Florissant, MO, USA Tim Ambler Nashville, TN, USA ISBN-13 (pbk): 978-1-4842-4994-9 ISBN-13 (electronic): 978-1-4842-4995-6 https://doi.org/10.1007/978-1-4842-4995-6 Copyright © 2019 by Sufyan bin Uzayr, Nicholas Cloud, Tim Ambler This work is subject to copyright. All rights are reserved by the Publisher, whether the whole or part of the material is concerned, specifically the rights of translation, reprinting, reuse of illustrations, recitation, broadcasting, reproduction on microfilms or in any other physical way, and transmission or information storage and retrieval, electronic adaptation, computer software, or by similar or dissimilar methodology now known or hereafter developed. Trademarked names, logos, and images may appear in this book. Rather than use a trademark symbol with every occurrence of a trademarked name, logo, or image we use the names, logos, and images only in an editorial fashion and to the benefit of the trademark owner, with no intention of infringement of the trademark. The use in this publication of trade names, trademarks, service marks, and similar terms, even if they are not identified as such, is not to be taken as an expression of opinion as to whether or not they are subject to proprietary rights. While the advice and information in this book are believed to be true and accurate at the date of publication, neither the authors nor the editors nor the publisher can accept any legal responsibility for any errors or omissions that may be made.
  • The Deep Learning Solutions on Lossless Compression Methods for Alleviating Data Load on Iot Nodes in Smart Cities

    The Deep Learning Solutions on Lossless Compression Methods for Alleviating Data Load on Iot Nodes in Smart Cities

    sensors Article The Deep Learning Solutions on Lossless Compression Methods for Alleviating Data Load on IoT Nodes in Smart Cities Ammar Nasif *, Zulaiha Ali Othman and Nor Samsiah Sani Center for Artificial Intelligence Technology (CAIT), Faculty of Information Science & Technology, University Kebangsaan Malaysia, Bangi 43600, Malaysia; [email protected] (Z.A.O.); [email protected] (N.S.S.) * Correspondence: [email protected] Abstract: Networking is crucial for smart city projects nowadays, as it offers an environment where people and things are connected. This paper presents a chronology of factors on the development of smart cities, including IoT technologies as network infrastructure. Increasing IoT nodes leads to increasing data flow, which is a potential source of failure for IoT networks. The biggest challenge of IoT networks is that the IoT may have insufficient memory to handle all transaction data within the IoT network. We aim in this paper to propose a potential compression method for reducing IoT network data traffic. Therefore, we investigate various lossless compression algorithms, such as entropy or dictionary-based algorithms, and general compression methods to determine which algorithm or method adheres to the IoT specifications. Furthermore, this study conducts compression experiments using entropy (Huffman, Adaptive Huffman) and Dictionary (LZ77, LZ78) as well as five different types of datasets of the IoT data traffic. Though the above algorithms can alleviate the IoT data traffic, adaptive Huffman gave the best compression algorithm. Therefore, in this paper, Citation: Nasif, A.; Othman, Z.A.; we aim to propose a conceptual compression method for IoT data traffic by improving an adaptive Sani, N.S.