Fine-grained commit-level vulnerability type prediction by CWE tree structure
Identifying security patches via code commits to allow early warnings and timely fixes for Open Source Software (OSS) has received increasing attention. However, the existing detection methods can only identify the presence of a patch (i.e., a binary classification) but fail to pinpoint the vulnerab...
Saved in:
Main Authors: | PAN, Shengyi, BAO, Lingfeng, XIA, Xin, LO, David, LI, Shanping |
---|---|
Format: | text |
Language: | English |
Published: |
Institutional Knowledge at Singapore Management University
2023
|
Subjects: | |
Online Access: | https://ink.library.smu.edu.sg/sis_research/8511 https://ink.library.smu.edu.sg/context/sis_research/article/9514/viewcontent/ICSE2023.pdf |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Institution: | Singapore Management University |
Language: | English |
Similar Items
-
Toward effective secure code reviews: An empirical study of security-related coding weaknesses
by: CHAROENWET, Wachiraphan, et al.
Published: (2024) -
Learning program semantics for vulnerability detection via vulnerability-specific inter-procedural slicing
by: WU, Bozhi, et al.
Published: (2023) -
Fine-grained Control of Security Capabilities
by: BONEH, D., et al.
Published: (2004) -
Using finite-state models for log differencing
by: AMAR, Hen, et al.
Published: (2018) -
Scalable custom instructions identification for instruction-set extensible processors
by: Yu, P., et al.
Published: (2013)