Abstract
Code cloning and copy-pasting code fragments is common practice in software engineering. If security vulnerabilities exist in a cloned code segment, those vulnerabilities may spread in the related software, potentially leading to security incidents. Code similarity is one effective approach to detect vulnerabilities hidden in software projects. However, due to the complexity, size, and diversity of source code, current methods suffer from low accuracy, and poor performance. Moreover, most existing clone detection techniques focus on a limited set of programming languages in the detection process. We propose to solve these problems using SearchSECO, a software analysis tool that detects vulnerabilities in multiple programming languages.
| Original language | English |
|---|---|
| Number of pages | 7 |
| Journal | CEUR Workshop Proceedings |
| Volume | 3245 |
| Publication status | Published - 2022 |
| Event | 21st Belgium-Netherlands Software Evolution Workshop, BENEVOL 2022 - Mons, Belgium Duration: 12 Sept 2022 → 13 Sept 2022 |
Bibliographical note
Publisher Copyright:© 2022 Copyright for this paper by its authors. Use permitted under Creative Commons License Attribution 4.0 International (CC BY 4.0)
Keywords
- code clone detection
- open-source software
- software security
- Software vulnerability