@inproceedings{,
    title={Estimating the Attack Surface from Residual Vulnerabilities in Open Source Software Supply Chain},
    author={Dapeng Yan and Yuqing Niu and Kui Liu and Zhe Liu and Zhiming Liu and Tegawend{\'{e}} F. Bissyand{\'{e}}},
    booktitle={Proceedings of the 21st {IEEE} International Conference on Software Quality, Reliability and Security},
    pages= {493--502},
    publisher = {IEEE},
    url = {https://doi.org/10.1109/QRS54544.2021.00060},
    doi = {https://doi.org/10.1109/QRS54544.2021.00060},
    year= {2021},
}