Defect-driven third-party library version upgrade recommendation method

Abstract

The invention belongs to the technical field of software engineering, in particular to a defect-driven third-party library version upgrade recommendation method. The method of the present invention includes: analyzing the third-party library dependencies of the software project, and obtaining all third-party library versions that the software project depends on; detecting and quantifying the defects in the old third-party library versions through the risk analysis of the third-party library based on the program call graph Risks brought by software projects, including the number of third-party library defects affecting software projects, the number and number of calls of defective third-party library APIs called by software projects; through the analysis of third-party library upgrade costs based on API difference analysis, Recommend and quantify the update cost of upgrading to a new third-party library version, including the number and number of calls of third-party library APIs called by the software project, deleted and modified in the new third-party library version. The method of the invention drives and assists the developers to upgrade the third-party library in time, reduces the upgrade workload of the developers, and improves the quality of the software project.

Description

technical field [0001] The invention belongs to the technical field of software engineering, and in particular relates to a defect-driven third-party library version upgrade recommendation method. Background technique [0002] In the software development process, third-party libraries play an important role. On the one hand, third-party libraries can be reused by developers to build software systems, allowing developers to focus more on the business logic of the software system. Therefore, third-party libraries can improve development efficiency, shorten development time and delivery time. On the other hand, third-party libraries are often widely used and tested by third-party library developers / testers and other developers / testers who use third-party libraries, so that the quality of third-party libraries is guaranteed to a certain extent. Therefore, third-party libraries can improve the overall quality of a software system. It can be seen that with the rapid development...

AI Technical Summary

Problems solved by technology

On the one hand, developers usually pay less attention to whether the third-party library used is the latest version, or whether a new version has been released, resulting in the software system using an old version of the third-party library that may contain various known defects, seriously affecting the software. System functionality and quality

On the other hand, even if developers know that there is a new version of the third-party library, it is often difficult for them to determine whether the various known defects fixed in the new version will really affect their software system, causing developers to spend a lot of time deciding whether to Need to update the version, so that the third-party library cannot be upgraded in time

Images