基于图结构源代码切片的智能化漏洞检测系统

针对智能化漏洞检测，从源代码程序依赖图中根据漏洞特征提取图结构源代码切片，将图结构切片信息表征后利用图神经网络模型进行漏洞检测工作。实现了切片级的漏洞检测，并在代码行级预测漏洞行位置。为了验证系统的有效性，分别与静态漏洞检测系统、基于序列化文本信息和基于图结构化信息的漏洞检测系统做比较，实验结果表明，所提系统在漏洞检测能力上有较高准确性，并且在漏洞代码行预测工作上有较好表现。

Intelligent vulnerability detection system based on graph structured source code slice

For the intelligent vulnerability detection, the system extracts the graph structured source code slices according to the vulnerability characteristics from the program dependency graph of source code, and then presents the graph structured slice information to carry out vulnerability detection by using the graph neural network model.Slice level vulnerability detection was realized and the vulnerability line was located at the code line level.In order to verify the effectiveness of the system, compared with the static vulnerability detection systems, the vulnerability detection system based on serialized text information, and the vulnerability detection system based on graph structured information, the experimental results show that the proposed system has a high accuracy in the vulnerability detection capability and a good performance in the vulnerability code line prediction.