Root-Cause-Mapping-Working-Group / RCM-WGLinks
This repository contains information related to the Root Cause Mapping Working Group and its activities. CVE Numbering Authority (CNA) representatives are invited to join and contribute to the working group's efforts.
☆17Updated last year
Alternatives and similar repositories for RCM-WG
Users that are interested in RCM-WG are comparing it to the libraries listed below
Sorting:
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆312Updated last year
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Updated 4 years ago
- Home page of project "KB"☆132Updated 10 months ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆42Updated 9 months ago
- Vul4J: A Dataset of Reproducible Java Vulnerabilities☆119Updated 5 months ago
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆22Updated 11 months ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆113Updated 2 weeks ago
- This repository contains a list of papers about software supply chain☆29Updated last year
- [ISSTA 2024] PatchFinder: A Two-Phase Approach to Security Patch Tracing for Disclosed Vulnerabilities in Open Source Software��☆27Updated 4 months ago
- DiverseVul: A New Vulnerable Source Code Dataset for Deep Learning Based Vulnerability Detection (RAID 2023) https://surrealyz.github.io/…☆173Updated last year
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆29Updated 2 years ago
- A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries☆352Updated 4 years ago
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆103Updated 2 years ago
- For our ISSTA23 paper "How Effective are Neural Networks for Fixing Security Vulnerabilities?" by Yi Wu, Nan Jiang, Hung Viet Pham, Thiba…☆41Updated 2 years ago
- A C/C++ dependency scanner☆41Updated 2 years ago
- The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning☆13Updated 2 years ago
- This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX☆72Updated 3 years ago
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆136Updated last year
- Repository for PrimeVul Vulnerability Detection Dataset☆217Updated last year
- MoreFixes: A Large-Scale Dataset of CVE Fix Commits Mined through Enhanced Repository Discovery☆63Updated last month
- ☆55Updated last year
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆136Updated 3 years ago
- MDG-based static vulnerability scanner specialized in analyzing npm packages and detecting taint-style and prototype pollution vulnerabil…☆22Updated 2 months ago
- [ICSE'24 Industry Challenge Track] "ReposVul: A Repository-Level High-Quality Vulnerability Dataset".☆92Updated last year
- ☆36Updated last year
- An ever-growing list of resources for data-driven vulnerability assessment and prioritization☆135Updated 2 years ago
- A vulnerability patch gathering tool☆44Updated 7 years ago
- ☆127Updated last year
- Repository for "SecurityEval Dataset: Mining Vulnerability Examples to Evaluate Machine Learning-Based Code Generation Techniques" publis…☆84Updated 2 years ago
- ☆28Updated last year