Artifact for ICSE NIER 2026 - Build Code is Still Code: Finding the Antidote for Pipeline Poisoning

Pappas, Brent; Gazzillo, Paul

doi:10.5281/zenodo.18233892

Published January 13, 2026 | Version 1.0.3

Software Open

Artifact for ICSE NIER 2026 - Build Code is Still Code: Finding the Antidote for Pipeline Poisoning

1. University of Central Florida

Foreman is a build system analyzer that checks that build phases follow developer-specified permissions. This helps developers detect pipeline poisoning vulnerabilities and attacks before they reach production code.

Files

artifact.zip

Files (3.8 MB)

Name	Size	Download all
artifact.zip md5:9ad37767e551ff84ae4f00d08cd04ed3	3.8 MB	Preview Download

Additional details

Is part of: Publication: 10.1145/3786582.3786799 (DOI)

Available: 2026-01-08

Programming language: Python
Development Status: Wip

Views

Downloads

Show more details

	All versions	This version
Views	69	42
Downloads	17	13
Data volume	80.1 MB	64.9 MB

More info on how stats are collected....

DOI

Resource type

Software

Publisher

Zenodo

License: Creative Commons Attribution 4.0 International

The Creative Commons Attribution license allows re-distribution and re-use of a licensed work on the condition that the creator is appropriately credited. Read more

Technical metadata

Created: January 13, 2026
Modified: January 13, 2026

artifact.zip

Files (3.8 MB)

Related works

Dates

Software

Artifact for ICSE NIER 2026 - Build Code is Still Code: Finding the Antidote for Pipeline Poisoning

Authors/Creators

Description

Files

artifact.zip

Files (3.8 MB)

Additional details

Related works

Dates

Software