首页>
外国专利>
Using code similarities for improving auditing and fixing of SAST-discovered code vulnerabilities
Using code similarities for improving auditing and fixing of SAST-discovered code vulnerabilities
展开▼
机译:使用代码相似性来改进审核和修复SAST发现的代码漏洞
展开▼
页面导航
摘要
著录项
相似文献
摘要
Implementations of the present disclosure include methods, systems, and computer-readable storage mediums for receiving results from security testing of source code, each result indicating a potential security vulnerability of the source code, displaying graphical representations of the results to a user, and, by a fix recommendation generator: receiving user input indicating a result of the results, receiving a set of code clones, each code clone being provided based on at least a snippet of the source code underlying the result, receiving a set of repairs, each repair being associated with a code clone, and mitigating a previously determined security vulnerability, and providing a set of fix recommendations based on the set of code clones, the set of repairs, and similarity metrics, each similarity metric indicating a similarity between the at least a snippet of the source code and a respective code clone.
展开▼