Secure Software Development in the Era of Fluid Multi-party Open Software and Services sap security research oss Related The Used, the Bloated, and the Vulnerable: Reducing the Attack Surface of an Industrial Application LastPyMile: Identifying the Discrepancy between Sources and Packages Beyond Metadata: Code-centric and Usage-based Analysis of Known Vulnerabilities in Open-source Software Vulnerable Open Source Dependencies: Counting Those That Matter Project Kb