Research
TRACER- Finding Patches for Open Source Software Vulnerabilities
How can we effectively detect and address known vulnerabilities in existing OSS vulnerabilities to enhance software security and reliability?
Demystifying the Composition and Code Reuse in Solidity Smart Contracts
How do misclassifications of subcontract types, like libraries labeled as contracts, affect Solidity smart contract security and management?
OSSFP: Precise and Scalable C/C++ Third-Party Library Detection using Fingerprinting Functions
Effectively detect and address known vulnerabilities in existing C/C++ code bases to enhance software security and reliability