Automated identification of libraries from vulnerability data: can we do better?

Automated identification of libraries from vulnerability data: can we do better?

Software engineers depend heavily on software libraries and have to update their dependencies once vulnerabilities are found in them. Software Composition Analysis (SCA) helps developers identify vulnerable libraries used by an application. A key challenge is the identification of libraries related...

Full description

Saved in:

Bibliographic Details
Main Authors:	HARYONO, Stefanus A., KANG, Hong Jin, SHARMA, Abhishek, SHARMA, Asankhaya, SANTOSA, Andrew E., ANG, Ming Yi, LO, David
Format:	text
Language:	English
Published:	Institutional Knowledge at Singapore Management University 2022
Subjects:	Multi-label classification Machine learning Vulnerability report Databases and Information Systems
Online Access:	https://ink.library.smu.edu.sg/sis_research/7690 https://ink.library.smu.edu.sg/context/sis_research/article/8693/viewcontent/automated.pdf
Tags:	Add Tag No Tags, Be the first to tag this record!
Institution:	Singapore Management University
Language:	English

Similar Items

CHRONOS: Time-aware zero-shot identification of libraries from vulnerability reports
by: LYU, Yunbo, et al.
Published: (2023)

Automated identification of libraries from vulnerability data
by: YANG, Chen, et al.
Published: (2020)

HERMES: using commit-issue linking to detect vulnerability-fixing commits
by: NGUYEN, Truong Giang, et al.
Published: (2022)

Exploiting library vulnerability via migration-based automated test generation
by: CHEN, Zirui, et al.
Published: (2024)

Automated pre-processing of a shrinkwrap label
by: Lim, Phyllis L., et al.
Published: (2007)

Multi-Granularity Detector for Vulnerability Fixes
by: NGUYEN, Truong Giang, et al.
Published: (2023)

Automated pressure-sensitive labeling machine
by: Carino, Faye Marie Goyena, et al.
Published: (2002)

A machine learning approach for vulnerability curation
by: CHEN, Yang, et al.
Published: (2020)

Combining Software Metrics and Text Features for Vulnerable File Prediction
by: ZHANG, Yun, et al.
Published: (2015)

Topic recommendation for GitHub repositories: How far can extreme multi-label learning go?
by: WIDYASARI, Ratnadira, et al.
Published: (2023)

Autofeeder for shrink wrap labeling machine
by: Ong, Jasper S., et al.
Published: (2002)

Hierarchical Multi-label Associative Classification for Protein Function Prediction Using Gene Ontology
by: Sawinee Sangsuriyun, et al.
Published: (2019)

Automated plastic cup labeling machine
by: Barte, Kay S., et al.
Published: (2004)

Spatial context-aware object-attentional network for multi-label image classification
by: Zhang, Jialu, et al.
Published: (2024)

Automatic image annotation via local multi-label classification
by: Wang, M., et al.
Published: (2013)

Automated bug report field reassignment and refinement prediction
by: XIA, Xin, et al.
Published: (2016)

Test mimicry to assess the exploitability of library vulnerabilities
by: KANG, Hong Jin, et al.
Published: (2022)

Adjustable wrap-around sticker labeling machine
by: Ajusto, Gerald, et al.
Published: (2008)

Ophthalmic bottle labeling machine
by: Andaluz, Francis Gabriel, et al.
Published: (2009)

Automatic vulnerability detection and repair
by: MA, Siqi
Published: (2018)

The socio-economic impacts of the COVID-19 mitigation measures and vulnerabilities in Singapore
by: Daly, Patrick, et al.
Published: (2025)

Finding real world software vulnerabilities using ChatGPT
by: Wong, Sean Chun Foh
Published: (2024)

Enhancing code vulnerability detection via vulnerability-preserving data augmentation
by: LIU, Shangqing, et al.
Published: (2024)

Image retagging using collaborative tag propagation
by: Liu, D., et al.
Published: (2014)

Image label completion by pursuing contextual decomposability
by: Liu, X., et al.
Published: (2013)

Independent component analysis for naive bayes classification
by: FAN LIWEI
Published: (2011)

CoLeFunDa: Explainable silent vulnerability fix identification
by: ZHOU, Jiayuan, et al.
Published: (2023)

Aspect-based API review classification: How far can pre-trained transformer model go?
by: YANG, Chengran, et al.
Published: (2022)

Identification of 27 abnormalities from multi-lead ECG signals: An ensembled SE_ResNet framework with Sign Loss function
by: Zhu, Zhaowei, et al.
Published: (2022)

Cold Start Thread Recommendation as Extreme Multi-label Classification
by: Kishaloy Halder, et al.
Published: (2020)

VulCurator: a vulnerability-fixing commit detector
by: NGUYEN, Truong Giang, et al.
Published: (2022)

EXPLORING A TRANSDIAGNOSTIC COGNITIVE VULNERABILITY TO INTERNALIZING SYMPTOMS IN ADOLESCENTS
by: RUTH POH YI NING
Published: (2019)

Certified Reasoning for Automated Verification
by: ASANKHAYA SHARMA
Published: (2015)

Multi-Label Learning for Semantic Image Annotation
by: CHEN XIANGYU
Published: (2013)

Estimating latent relative labeling importances for multi-label learning
by: He, Shuo, et al.
Published: (2020)

Finding RESTful API vulnerabilities using ChatGPT
by: Ho, Kenneth Jun Minn
Published: (2024)

Discoursing Disasters: Vulnerability and Gaps in Rationalities
by: Rodriguez, Agustin Martin G
Published: (2016)

Metabolic alterations and vulnerabilities in hepatocellular carcinoma
by: Tenen, Daniel G., et al.
Published: (2022)

Automated removal of cross site scripting vulnerabilities in web applications
by: SHAR, Lwin Khin, et al.
Published: (2011)

Unmasking the lurking: Malicious behavior detection for IoT malware with multi-label classification
by: FENG, Ruitao, et al.
Published: (2024)