Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
IEEE

Let the Code Speak: Incorporating Program Dynamic State for Better Method-Level Fault Localization

Abstract: Fault localization (FL) is a critical but time-consuming part of software debugging. With the improvement of the Large Language Models (LLMs) in their code capabilities, the increasing ...
IEEE

Line-Level Defect Prediction by Capturing Code Contexts With Graph Convolutional Networks

Abstract: Software defect prediction refers to the systematic analysis and review of software using various approaches and tools to identify potential defects or errors. Software defect prediction ...