This research explores the challenges in agile contract modeling for software innovation projects, particularly for outsourced projects. Literature has presented various methods and frameworks for agile contract management, but there is still a gap in effectively establishing the best contract approach for each project based on specific conditions. This work aims to contribute with a framework definition that effectively applies practical approaches for contract deployment suitable for software innovation projects, considering the best contractual practices related to projects specific context. The study will conduct an action research at CESAR, a prominent Brazilian Science and Technology Institute (ICT) with 1300 employees and 26 years old, to establish effective agile contract models and its implementation that better support agile management and project success. The study hopes to contribute to understanding the relationship between the type of contract and project outcomes and to provide better agile contract implementation for software projects developed by outsourced companies innovation.

Adriano Gomes

UFPE

Brazil

Efraín R. Fonseca C.Session Chair

Universidad de las Fuerzas Armadas ESPE

Ecuador

Kai PetersenSession Chair

University of Applied Sciences Flensburg, Germany / Blekinge Institute of Technology, Sweden

Germany

Industrial applications heavily integrate open-source software libraries nowadays. Beyond the benefits that libraries bring, they can also impose a real threat in case a library is affected by a vulnerability but its community is not active in creating a fixing release. Therefore, I want to introduce an automatic monitoring approach for industrial applications to identify open-source dependencies that show negative signs regarding their current or future maintenance activities. Since most research in this field is limited due to lack of features, labels, and transitive links, and thus is not applicable in industry, my approach aims to close this gap by capturing the impact of direct and transitive dependencies in terms of their maintenance activities. Automatically monitoring the maintenance activities of dependencies reduces the manual effort of application maintainers and supports application security by continuously having well-maintained dependencies.

Alexandros Tsakpinis

fortiss GmbH

Germany

Kai PetersenSession Chair

University of Applied Sciences Flensburg, Germany / Blekinge Institute of Technology, Sweden

Germany

Iflaah SalmanSession Chair

Lappeenranta-Lahti University of Technology (LUT)

Finland