In collaborative software development, developers submit their contributions to repositories that are used to integrate code from various collaborators. To avoid privacy and security issues, code contributions are often reviewed before integration. Although careful manual code review can detect such issues, it might be time‐consuming, expensive, and error‐prone. Automatic analysis tools can also detect privacy and security issues, but they often demand significant developer effort, or are domain specific, considering fixed framework specific vulnerability sources and sinks. To reduce these problems, in this paper we propose the Salvum policy language to support the specification of constraints that help to protect sensitive information from being inadvertently accessed by specific code contributions. We implement a tool that automatically checks Salvum policies for systems of different technical domains. We also investigate whether Salvum can find policy violations for a number of open‐source projects. We find evidence that Salvum helps to detect violations even for well‐supported and highly active projects. Moreover, our tool helps to find 80 violations in benchmark projects.

中文翻译：

---

代码贡献的隐私和安全约束

在协作软件开发中，开发人员将他们的贡献提交给用于集成来自不同协作者的代码的存储库。为避免隐私和安全问题，通常在集成之前审查代码贡献。尽管仔细的手动代码审查可以检测到此类问题，但它可能耗时、昂贵且容易出错。自动分析工具也可以检测隐私和安全问题，但考虑到固定框架特定的漏洞源和接收器，它们通常需要大量的开发人员努力，或者是特定领域的。为了减少这些问题，在本文中，我们提出了 Salvum 策略语言来支持约束规范，这有助于保护敏感信息不被特定代码贡献无意中访问。我们实施了一个工具，可以自动检查不同技术领域系统的 Salvum 策略。我们还调查 Salvum 是否可以发现一些开源项目的违规行为。我们发现证据表明，即使对于支持良好且高度活跃的项目，Salvum 也有助于检测违规行为。此外，我们的工具有助于在基准项目中找到 80 个违规行为。