Sep 7, 2024. | By: Mohammed Latif Siddiq

Our paper, “SALLM: Security Assesment of Generated Code”, has been accepted to the 6th International Workshop on Automated and verifiable Software sYstem Development (ASYDE) co-located with Automated Software Engineering conference (ASE 2024).

This is the first kind of paper to introduce a framework for automated security evaluation of the generated code using dynamic and static analysis. We have 100 Python prompts with unit tests for functionality and security. We benchmarked several models with the SALLM framework, and found GPT-3.5 balanced both functional and secure code generation.

Related Links

• Preprint
• s2e-lab/SALLM
• 10.1145/3691621.3694934

BibTeX

@inproceedings{siddiq2024sallm,
  author={Siddiq, Mohammed Latif and Santos, Joanna C. S. and Devareddy, Sajith and Muller, Anna},
  title={SALLM: Security Assessment of Generated Code}, 
  booktitle = {Proceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering Workshops (ASEW '24)},
  numpages = {12},
  location = {Sacramento, CA, USA},
  doi = {10.1145/3691621.3694934},
  series = {ASEW '24},
  year = {2024}
}

Subscribe

Subscribe to this blog via RSS.

Categories

Paper 13

Research 13

Tool 2

Llm 10

Dataset 2

Qualitative-analysis 1

Survey 1

Recent Posts

"Large Language Models in Computer Science Education: A Systematic Literature Review" accepted at SIGCSE TS 2025

Posted on 01 Oct 2024

"SALLM: Security Assessment of Generated Code" accepted at ASYDE 2024 (ASE Workshop)

Posted on 07 Sep 2024

"FRANC: A Lightweight Framework for High-Quality Code Generation" and "The Fault in our Stars: Quality Assessment of Code Generation Benchmarks " accepted at SCAM 2022

Posted on 29 Aug 2024

"Using Large Language Models to Generate JUnit Tests: An Empirical Study" accepted at EASE 2024.

Posted on 07 Mar 2024

Popular Tags

Paper (13) Research (13) Tool (2) Llm (10) Dataset (2) Qualitative-analysis (1) Survey (1)