@MASTERSTHESIS\{IMM2017-07035,
    author       = "M. B. Nielsen",
    title        = "Quality and {IT} Security assessment of Open Source Software projects",
    year         = "2017",
    school       = "Technical University of Denmark, Department of Applied Mathematics and Computer Science",
    address      = "Richard Petersens Plads, Building 324, {DK-}2800 Kgs. Lyngby, Denmark, compute@compute.dtu.dk",
    type         = "",
    note         = "{DTU} supervisor: Christian D. Jensen, cdje@dtu.dk, {DTU} Compute",
    url          = "http://www.compute.dtu.dk/english",
    abstract     = "Trustworthiness in open source software can be evaluated on attributes of software engineering. The attributes possibilities are to describe trustworthiness is vast, but security have to be evaluated as it has always been a consideration in trustworthiness. The at-tributes security, maintainability and team capabilities can evaluate trustworthiness as a metric.
The trustworthiness is evaluated using a software product with information on open source software. The software product is an assistance for people to understand the trustworthiness of a software product. The security metric is evaluated based on vulnerabilities in the {CVE} register and open source software projects’ data from OpenHub. Maintainability using source code data to determine understandability and maintainability, and team capabilities are described using contributor information on their projects contributions. The trustworthiness can thus be evaluated for any open source software project with information contained in the sources.
Trustworthiness metric can be further expanded by new metrics, which are easily added to the software product."
}