To ensure user satisfaction and success of mobile applications, it is important to provide
highly performant applications. This is particularly important for resource-constrained …

Software developers are key players in the security ecosystem as they produce code that
runs on millions of devices. Yet we continue to see insecure code being developed and …

Static code analysis is often used to scan source code for security vulnerabilities. Given the
wide range of existing solutions implementing different analysis techniques, it is very …

Static analyzers help find bugs early by warning about recurring bug categories. While fixing
these bugs still remains a mostly manual task in practice, we observe that fixes for a specific …

We investigate the feasibility of employing large language models (LLMs) for conducting the
security audit of smart contracts, a traditionally time-consuming and costly process. Our …

For decades, much software engineering research has been dedicated to devising
automated solutions aimed at enhancing developer productivity and elevating software …

In today's agile world, developers often rely on continuous integration pipelines to help build
and validate their changes by executing tests in an efficient manner. One of the significant …

Recently, Automated Vulnerability Localization (AVL) has attracted much attention, aiming to
facilitate diagnosis by pinpointing the lines of code responsible for discovered …

Static analysis tools support developers in detecting potential coding issues, such as bugs
or vulnerabilities. Research on static analysis emphasizes its technical challenges but also …

Machine learning (ML) models play an increasingly prevalent role in many software
engineering tasks. However, because most models are now powered by opaque deep …