Diversevul: A new vulnerable source code dataset for deep learning based vulnerability detection
We propose and release a new vulnerable source code dataset. We curate the dataset by
crawling security issue websites, extracting vulnerability-fixing commits and source codes …
crawling security issue websites, extracting vulnerability-fixing commits and source codes …
Vulnerabilities and Security Patches Detection in OSS: A Survey
R Lin, Y Fu, W Yi, J Yang, J Cao, Z Dong, F **e… - ACM Computing …, 2024 - dl.acm.org
Over the past decade, Open Source Software (OSS) has experienced rapid growth and
widespread adoption, attributed to its openness and editability. However, this expansion has …
widespread adoption, attributed to its openness and editability. However, this expansion has …
Ai for devsecops: A landscape and future opportunities
DevOps has emerged as one of the most rapidly evolving software development paradigms.
With the growing concerns surrounding security in software systems, the DevSecOps …
With the growing concerns surrounding security in software systems, the DevSecOps …
DetectVul: A statement-level code vulnerability detection for Python
Detecting vulnerabilities in source code using graph neural networks (GNN) has gained
significant attention in recent years. However, the detection performance of these …
significant attention in recent years. However, the detection performance of these …
Configuration validation with large language models
Misconfigurations are major causes of software failures. Existing practices rely on developer-
written rules or test cases to validate configurations, which are expensive. Machine learning …
written rules or test cases to validate configurations, which are expensive. Machine learning …
[PDF][PDF] LLMs Cannot Reliably Identify and Reason About Security Vulnerabilities (Yet?): A Comprehensive Evaluation, Framework, and Benchmarks
Large Language Models (LLMs) have been suggested for use in automated vulnerability
repair, but benchmarks showing they can consistently identify security-related bugs are …
repair, but benchmarks showing they can consistently identify security-related bugs are …
Chain-of-thought prompting of large language models for discovering and fixing software vulnerabilities
Security vulnerabilities are increasingly prevalent in modern software and they are widely
consequential to our society. Various approaches to defending against these vulnerabilities …
consequential to our society. Various approaches to defending against these vulnerabilities …
Survey of source code vulnerability analysis based on deep learning
C Liang, Q Wei, J Du, Y Wang, Z Jiang - Computers & Security, 2025 - Elsevier
Amidst the rapid development of the software industry and the burgeoning open-source
culture, vulnerability detection within the software security domain has emerged as an ever …
culture, vulnerability detection within the software security domain has emerged as an ever …
[PDF][PDF] LLMs Cannot Reliably Identify and Reason About Security Vulnerabilities (Yet?): A Comprehensive Evaluation, Framework, and Benchmarks
Large Language Models (LLMs) have been suggested for use in automated vulnerability
repair, but benchmarks showing they can consistently identify security-related bugs are …
repair, but benchmarks showing they can consistently identify security-related bugs are …
{VulSim}: Leveraging Similarity of {Multi-Dimensional} Neighbor Embeddings for Vulnerability Detection
Despite decades of research in vulnerability detection, vulnerabilities in source code remain
a growing problem, and more effective techniques are needed in this domain. To enhance …
a growing problem, and more effective techniques are needed in this domain. To enhance …