Context Matters: Qualitative Insights into Developers' Approaches and Challenges with Software Composition Analysis

Name: Context Matters: Qualitative Insights into Developers' Approaches and Challenges with Software Composition Analysis
Duration: 15 min
Description: Competent usability research on SCA tool friction that confirms what most practitioners already know anecdotally — alert fatigue is real, reachability context is missing, CI/CD integration is painful. The work is methodologically sound and the qualitative findings are organized coherently, but 20 interviews at USENIX Security is a modest sample for a venue that expects you to move the field.

Elizabeth Lin

34th USENIX Security Symposium (USENIX Security '25) · Day 2 · Usable Privacy and Security 2: Software and Experts

AI review

Competent usability research on SCA tool friction that confirms what most practitioners already know anecdotally — alert fatigue is real, reachability context is missing, CI/CD integration is painful. The work is methodologically sound and the qualitative findings are organized coherently, but 20 interviews at USENIX Security is a modest sample for a venue that expects you to move the field.

Watch on YouTube