Static analysis tools have showcased their importance and usefulness in automated
detection of defects. However, the tools are known to generate a large number of alarms …

Program analysis tools often produce undesirable output due to various approximations. We
present an approach and a system EUGENE that allows user feedback to guide such …

When program verification tools fail to verify a program, either the program is buggy or the
report is a false alarm. In this situation, the burden is on the user to manually classify the …

Static analysis tools have showcased their importance and usefulness in automated
detection of code anomalies and defects. However, the large number of alarms reported and …

Program analyses necessarily make approximations that often lead them to report true
alarms interspersed with many false alarms. We propose a new approach to leverage user …

Compiler bugs are extremely harmful, but are notoriously difficult to debug because compiler
bugs usually produce few debugging information. Given a bug-triggering test program for a …

Many software systems support automatic collection of field crash-reports which record the
stack traces and other runtime information when crashes occur. Analysis of field crash …

Nowadays, many software organizations rely on automatic problem reporting tools to collect
crash reports directly from users' environments. These crash reports are later grouped …

Suppose you have to assemble a security team, which is tasked with performing the security
analysis of your organization's latest applications. After researching how to assess your …

We present BayeSmith, a general framework for automatically learning probabilistic models
of static analysis alarms. Several probabilistic reasoning techniques have recently been …