Electronics and information technologies / Електроніка та інформаційні технології

Software risks are always a crucially important topic for research because the software development process is quite expensive. The competition is high enough to ignore it. Although the "golden" era for startup projects is slowly ending, the latest achievements in generative AI show that now is the time to "take risks" and capture the software market using this technology. Therefore, it is necessary to analyse already known risks and identify new risks associated with business models and market conditions with generative AI capacity.

The article analyses the already existing taxonomies of software risks, their advantages and disadvantages, the software development life cycle stages, and risk management activities in the conditions of different software development models. Using the proposed taxonomy, the noticed activities and processes are linked in one taxonomy, which allows easy identification of risks based on known software requirements and vice versa.

The created taxonomy has been validated by some subject domain experts who work at big IT companies. ChatGPT4 is one of the experts counting on the LLM capability to resolve the summarisation and text classification tasks. The practical results of the risk taxonomy are crucially important because we avoid LLM hallucinations and enable a taxonomy-driven approach to prompt engineering for risk management.

Keywords: software development risks, risk taxonomy, risk recognition, risk detection, taxonomy, software requirements, requirement analysis.

1. Hossain, Mohammad. (2023). Software Development Life Cycle (SDLC) Methodologies for Information Systems Project Management. DOI: https://doi.org/10.36948/ijfmr.2023.v05i05.6223
2. Hrishitva Patel. An Insight on (SDLC) Software Development Lifecycle Process Models. Advance. April 21, 2023. DOI: https://doi.org/10.31124/advance.22354453.v1
3. Rozhnova, T., Tomachynska, V., & Korsun, D. (2022). Life cycle models, principles and methodologies of software development. Scientific Collection «InterConf+», I. 28 (137), pp. 394–401. DOI: https://doi.org/10.51582/interconf.19-20.12.2022.040
4. Gurung, Gagan & Shah, Rahul & Jaiswal, Dhiraj. (2020). Software Development Life Cycle Models - A Comparative Study. International Journal of Scientific Research in Computer Science, Engineering and Information Technology. 30-37. DOI: http://dx.doi.org/10.32628/CSEIT206410
5. M. Lyashkevych, V. Lyashkevych and R. Shuvar. "Risks' Attribute Values Evaluation in Software Engineering by Monte Carlo Simulation," 2023 IEEE 13th International Conference on Electronics and Information Technologies (ELIT), Lviv, Ukraine, 2023, pp. 137-141. DOI: http://dx.doi.org/10.1109/ELIT61488.2023.10310775
6. Khatavakhotan, Ahdieh & Ow, Siew. (2015). Development of a software risk management model using unique features of a proposed audit component. Malaysian Journal of Computer Science. 28. 110-131. URL: https://www.researchgate.net/publication/281993369_Development_of_a_software_risk_management_model_using_unique_features_of_a_proposed_audit_component
7. Dey, Prasanta & Kinch, Jason & Ogunlana, Stephen. (2007). Managing risk in software development projects: A case study. Industrial Management and Data Systems. 107. 284-303. DOI: http://dx.doi.org/10.1108/02635570710723859
8. Y. Hrytsiuk, P. Grytsyuk, T. Dyak and H. Hrynyk. "Software Development Risk Modeling," 2019 IEEE 14th International Conference on Computer Sciences and Information Technologies (CSIT), Lviv, Ukraine, 2019, pp. 134-137, doi: http://dx.doi.org/10.1109/STC-CSIT.2019.8929778
9. S. Islam and S. H. Houmb. Integrating risk management activities into requirements engineering. In Proc. of the 4th IEEE Research International Conference on Research Challenges in Information Science(RCIS2010), Nice, France, 2010
10. S. Islam and S. H. Houmb. Towards a framework for offshore outsource software development risk management model. Journal of Software (JSW), Special Issue: Selected Papers of the IEEE International Conference on Computer and Information Technology (ICCIT 2009), 2011.
11. Henri, Evans. (2020). A Review of Risk Management in Different Software Development Methodologies.
12. Agrawal, T., Walia, G.S. & Anu, V.K. Development of a Software Design Error Taxonomy: A Systematic Literature Review. SN COMPUT. SCI. 5, 467 (2024). DOI: https://doi.org/10.1007/s42979-024-02797-2
13. Oehmen, Josef & Seering, Warren & Bassler, Denis & Ben-Daya, Mohamed. (2013). A comparison of the integration of Risk management Principles in Product Development Approaches. 3.
14. Menezes Júnior, Júlio & Gusmao, Cristine & Moura, Hermano. (2013). Defining Indicators for Risk Assessment in Software Development Projects. CLEI Electronic Journal. 16. 11-11. URL: https://www.researchgate.net/publication/317447281_Defining_Indicators_for_Risk_Assessment_in_Software_Development_Projects
15. Matusova, Olena & Victoriya, Andryeyeva & Viktor, Ahodzinsky. (2019). Risk Management Models. Herald of Kyiv National University of Trade and Economics. 128. 75-85. URL: https://www.researchgate.net/publication/338171666_RISK_MANAGEMENT_MODELS
16. Alexsandro Souza Filippetto, Robson Lima, Jorge Luis Victória Barbosa. A risk prediction model for software project management based on similarity analysis of context histories. Information and Software Technology. Volume 131. 2021. DOI: http://dx.doi.org/10.1016/j.infsof.2020.106497
17. Lyashkevych V.Y. Using the situational approach in the construction industry ontology "Predictive diagnostics computer means" [Text] // V.Y. Lyashkevych, R.I. Makarchuk, A.A. Nadyeyev / Bulletin Khmelnytsky National University. - No 5. - 2013. - P. 152-158.