MOVis: A Visual Analytics Tool for Surfacing Missed Patches Across Software Variants

A team of researchers from the University of Luxembourg and Mbarara University of Science and Technology has developed MOVis, a desktop tool that tackles a critical software maintenance problem. In 'clone-and-own' development, where projects are forked into independent variants, crucial security patches applied to one repository often fail to propagate to others. Previous research by the PaReco tool identified that thousands of these 'missed opportunity' (MO) patches exist in real ecosystems, but its textual output made understanding and fixing them difficult. MOVis solves this by providing a lightweight, interactive visualization that loads PaReco's data and presents patched and buggy code sections (hunks) in a side-by-side view, clearly highlighting corresponding regions and the structural differences that prevent easy reuse.

MOVis enables developers to efficiently audit and maintain consistency across software families. The tool's visual interface allows engineers to quickly locate missed fixes, understand the specific adaptations needed for different codebases, and decide how to propagate critical updates. This directly addresses the security and stability risks posed by divergent forks, which can leave thousands of software instances vulnerable to known bugs. The researchers have made the tool, a full replication package, and a demonstration video publicly available, providing a practical solution for developers managing complex software variant ecosystems.