基于大模型的缺陷静态检查.pdf

《基于大模型的缺陷静态检查.pdf》由会员分享，可在线阅读，更多相关《基于大模型的缺陷静态检查.pdf（41页珍藏版）》请在三个皮匠报告上搜索。

1、娄一翎计算机科学技术学院复旦大学基于大模型的缺陷静态检测基于大模型的缺陷静态检测LLM-based StaticLLM-based Static BugBug Detection Detection StaticStatic BugBug DetectionDetectionSoftwareStatically analyzing the codeIdentifying bugs/vulnerabilitiesStaticStatic analysisanalysis toolstoolsData-driven&learning-Data-driven&learning-based based

2、 Buggy/correct code instanceML/DL modelsRecent trend:LLM-based bug detectionRecent trend:LLM-based bug detectionReseachers are very interested in“how effectively do LLMs detect bugs?”It seems quite promising that LLMs can identify bugs sometimes,But still not always perfect for the precision and rec

3、all in pracice.Recent trend:LLM-based bug detectionRecent trend:LLM-based bug detectionAdvanced Prompting StrategiesFine-tuningCrafted instructionsProject InformationCWE General KnowledgeCoT reasoningAST/CFG in PromptThere emerge many studies exploring how different prompting strategies can help LLM

4、 in bug dectionLLMs1 Zhang C,Liu H,Zeng J,et al.Prompt-enhanced software vulnerability detection using chatgpt.ICSE 2024 Poster.2 Purba,Moumita Das,et al.Software vulnerability detection using large language models.ISSREW 2023.3 Fu,Michael,et al.Chatgpt for vulnerability detection,classification,and

5、 repair:How far are we?APSEC 2023.Recent trend:advanced prompt strategies in LLM-based bug detectionRecent trend:advanced prompt strategies in LLM-based bug detection1 Zhang C,Liu H,Zeng J,et al.Prompt-enhanced software vulnerability detection using chatgpt.ICSE 2024 Poster.2 Purba,Moumita Das,et al

6、.Software vulnerability detection using large language models.ISSREW 2023.3 Fu,Michael,et al.Chatgpt for vulnerability detection,classification,and repair:How far are we?APSEC 2023.Crafted instructionsProject InformationCWE General KnowledgeCoT reasoningAST/CFG in PromptIt still remain unexploredune