Dann, AndreasPlate, HenrikHermann, BenPonta, Serena ElisaBodden, EricGrunske, LarsSiegmund, JanetVogelsang, Andreas2022-01-192022-01-192022978-3-88579-714-2https://dl.gi.de/handle/20.500.12116/37983This short paper presents a study investigating the impact of typical development practices, like re-compilation, re-bundling, on the performance of vulnerability scanners to detect known vulnerabilities in used open-source dependencies. In particular, the paper studies (i) types of modifications that affect the detection of vulnerable open-source dependencies and (ii) their impact on the performance of vulnerability scanners through an empirical study on 7024 Java projects developed at SAP.enSecurity maintenanceOpen-Source SoftwareSecurity VulnerabilitiesText/Conference Paper10.18420/se2022-ws-0031617-5468