Research
Demystifying the Vulnerability Propagation and Its Evolution via Dependency Trees in the NPM Ecosystem
How can we effectively detect and mitigate known vulnerabilities in the NPM ecosystem to enhance the security and reliability of JavaScript applications?
Software Architecture Recovery with Information Fusion
How can we efficiently recover accurate software architecture in evolving C/C++ and Java codebases to improve system maintainability?
Towards Understanding Third-party Library Dependency in C/C++ Ecosystem
How can we effectively detect and address vulnerabilities introduced by third-party library dependencies in C/C++ code bases to enhance software security and reliability?
A Comprehensive Study on Quality Assurance Tools for Java
How can we effectively detect and address quality issues in Java code bases to improve software quality and maintainability?
Comparison and Evaluation on Static Application Security Testing (SAST) Tools for Java
How can we effectively detect and address known vulnerabilities in existing Java applications to enhance software security and reliability?
Empirical Analysis of Vulnerabilities Life Cycle in Golang Ecosystem
How can we effectively detect and address known vulnerabilities in existing Golang code bases to enhance software security and reliability?