Paper published in IEEE Transactions on Software Engineering

The paper “I just looked for the solution!” - On Integrating Security-Relevant Information in Non-Security API Documentation to Support Secure Coding Practices by Peter Leo Gorski, Sebastian Möller, Stephan Wiefling and Luigi Lo Iacono is published in the IEEE Transactions on Software Engineering (TSE) journal.

The work shows an eye-tracking to investigate how developers use code examples in non-security API documentation. The observations suggest that developers mostly focused on code-examples, and that these significantly help to produce secure solutions.