search menu icon-carat-right cmu-wordmark


The SEI provides access to more than 5,000 documents from three decades of research on best practices in software engineering. These documents include technical reports, presentations, webinars, podcasts, blogs, and other searchable materials. You can search our database to find publications that span the SEI's history as well as current research.

SEI Digital Library

Our digital library holds over 30 years of publications that you can browse by topic, author, and publication type.

Browse Digital Library

New in Publications

David Svoboda

Safeguarding Against Recent Vulnerabilities Related to Rust

June 28, 2024 • Podcast
David Svoboda

David Svoboda discusses two vulnerabilities related to Rust, their sources, and how to mitigate...

learn more
Headshot of Ipek Ozkaya.

Generative AI and Software Engineering Education

June 26, 2024 • Webcast
Ipek Ozkaya, Douglas Schmidt (Vanderbilt University)

In this webcast, three experts in software engineering discuss how generative AI is influencing software engineering...


Developing a Global Network of Computer Security Incident Response Teams (CSIRTs)

June 26, 2024 • Podcast
Tracy Bills, James Lord

Tracy Bills and James Lord discuss the SEI’s work developing Computer Security Incident Response Teams (CSIRTs) across the...

learn more

Application Programming Interface (API) Vulnerabilities and Risks

June 24, 2024 • Special Report
McKinley Sconiers-Hasan

This report describes 11 common vulnerabilities and 3 risks related to application programming interfaces, providing suggestions about how to fix or reduce their...

Headshot of Michael Bandor

Software Bill of Materials (SBOM) Considerations for Operational Test & Evaluation Activities

June 14, 2024 • White Paper
Michael S. Bandor

This white paper looks at the background and history of SBOMs as well as the general questions and challenges for use with Operational Test & Evaluation...

Timothy A. Chick

Secure Systems Don’t Happen by Accident

June 11, 2024 • Webcast
Timothy A. Chick

In this webcast, Tim Chick discusses how security is an integral aspect of the entire software...