githubnext / amalfi-artifact
Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
☆39Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for amalfi-artifact
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆122Updated 2 years ago
- ☆51Updated 10 months ago
- This repository contains a list of papers about software supply chain☆25Updated 6 months ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆63Updated last month
- ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?☆27Updated last year
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆15Updated 8 months ago
- Vul4J: A Dataset of Reproducible Java Vulnerabilities☆68Updated 2 months ago
- A deep learning-based vulnerability detection framework☆74Updated 8 months ago
- A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries☆242Updated 3 years ago
- ☆88Updated 3 weeks ago
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆204Updated 3 months ago
- ☆23Updated last year
- This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…☆60Updated this week
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆137Updated last year
- Home page of project "KB"☆114Updated 3 weeks ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆40Updated 2 years ago
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆83Updated last year
- The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…☆41Updated last year
- A C/C++ dependency scanner☆37Updated last year
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆52Updated 2 weeks ago
- ☆23Updated 2 months ago
- Vulnerability Discovery with Function Representation Learning from Unlabeled Projects☆37Updated 6 years ago
- ☆33Updated 2 years ago
- FUNDED is a novel learning framework for building vulnerability detection models.☆127Updated 11 months ago
- open science repo of "Neural Transfer Learning for Repairing Security Vulnerabilities in C Code" https://arxiv.org/pdf/2104.08308☆56Updated 9 months ago
- Cross-Project Transfer Representation Learning for Vulnerable Function Discovery☆34Updated 5 years ago
- ☆50Updated 3 years ago
- This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX☆65Updated 2 years ago
- DeepWukong: Statically Detecting Software Vulnerabilities Using Deep Graph Neural Network☆89Updated 2 years ago
- ☆19Updated last year