English
Related papers

Related papers: Large-Scale-Exploit of GitHub Repository Metadata …

200 papers

The GitHub platform has fueled the creation of truly global software, enabling contributions from developers across various geographical regions of the world. As software becomes more entwined with global politics and social regulations, it…

Software Engineering · Computer Science 2024-04-09 Youmei Fan , Ani Hovhannisyan , Hideaki Hata , Christoph Treude , Raula Gaikovina Kula

Federated learning is particularly susceptible to model poisoning and backdoor attacks because individual users have direct control over the training data and model updates. At the same time, the attack power of an individual user is…

Machine Learning · Computer Science 2022-10-18 Yuxin Wen , Jonas Geiping , Liam Fowl , Hossein Souri , Rama Chellappa , Micah Goldblum , Tom Goldstein

A key challenge of big data analytics is how to collect a large volume of (labeled) data. Crowdsourcing aims to address this challenge via aggregating and estimating high-quality data (e.g., sentiment label for text) from pervasive…

Cryptography and Security · Computer Science 2021-02-26 Minghong Fang , Minghao Sun , Qi Li , Neil Zhenqiang Gong , Jin Tian , Jia Liu

In this paper, we show how to exploit real-time communication applications to determine the IP address of a targeted user. We focus our study on Skype, although other real-time communication applications may have similar privacy issues. We…

Networking and Internet Architecture · Computer Science 2011-10-18 Stevens Le Blond , Zhang Chao , Arnaud Legout , Keith W. Ross , Walid Dabbous

Open-source projects are essential to software development, but publicly disclosing vulnerabilities without fixes increases the risk of exploitation. The Open Source Security Foundation (OpenSSF) addresses this issue by promoting robust…

It has become common to publish large (billion parameter) language models that have been trained on private datasets. This paper demonstrates that in such settings, an adversary can perform a training data extraction attack to recover…

COVID-19 has had a profound impact on the lives of all human beings. Emerging technologies have made significant contributions to the fight against the pandemic. An extensive review of the application of technology will help facilitate…

Information Retrieval · Computer Science 2022-07-14 Liang Tian , Chengzhi Zhang

GitHub is the largest code hosting platform, with millions of repositories spanning multiple technologies. Despite this, little is known about the actual contents of GitHub's repositories in the wild. This paper presents an initial…

Software Engineering · Computer Science 2026-05-19 Andre Hora , João Eduardo Montandon , Diego Elias Costa

One of the ways in which attackers try to steal sensitive information from corporations is by sending spearphishing emails. This type of emails typically appear to be sent by one of the victim's coworkers, but have instead been crafted by…

Cryptography and Security · Computer Science 2014-10-27 Gianluca Stringhini , Olivier Thonnard

The rapid development of large language models (LLMs) has significantly advanced code completion capabilities, giving rise to a new generation of LLM-based Code Completion Tools (LCCTs). Unlike general-purpose LLMs, these tools possess…

Computation and Language · Computer Science 2025-01-03 Wen Cheng , Ke Sun , Xinyu Zhang , Wei Wang

While smishing (SMS Phishing) attacks have risen to become one of the most common types of social engineering attacks, there is a lack of relevant smishing datasets. One of the biggest challenges in the domain of smishing prevention is the…

Cryptography and Security · Computer Science 2024-04-30 Daniel Timko , Muhammad Lutfor Rahman

With an ever-increasing amount of open source software, the popularity of services like GitHub that facilitate code reuse, and common misconceptions about the licensing of open source software, the problem of license violations in the code…

Software Engineering · Computer Science 2020-07-07 Yaroslav Golubev , Maria Eliseeva , Nikita Povarov , Timofey Bryksin

Software repositories such as Git have become a relevant source of information for software engineer researcher. For instance, the detection of Commits that fulfill a given criterion (e.g., bugfixing commits) is one of the most frequent…

Software Engineering · Computer Science 2019-06-11 Matias Martinez , Martin Monperrus

A version control system records changes to a file or set of files over time so that changes can be tracked and specific versions of a file can be recalled later. As such, it is an essential element of a reproducible workflow that deserves…

Linux systems are integral to the infrastructure of modern computing environments, necessitating robust security measures to prevent unauthorized access. Privilege escalation attacks represent a significant threat, typically allowing…

Cryptography and Security · Computer Science 2025-02-18 Andreas Happe , Jürgen Cito

Privacy code review is a critical process that enables developers and legal experts to ensure compliance with data protection regulations. However, the task is challenging due to resource constraints. To address this, we introduce the…

Software Engineering · Computer Science 2024-08-27 Feiyang Tang , Bjarte M. Østvold

GitHub is the largest host of open source software on the Internet. This large, freely accessible database has attracted the attention of practitioners and researchers alike. But as GitHub's growth continues, it is becoming increasingly…

Software Engineering · Computer Science 2022-08-02 Francisco Zanartu , Christoph Treude , Bruno Cartaxo , Hudson Silva Borges , Pedro Moura , Markus Wagner , Gustavo Pinto

The critical role played by email has led to a range of extension protocols (e.g., SPF, DKIM, DMARC) designed to protect against the spoofing of email sender domains. These protocols are complex as is, but are further complicated by…

Cryptography and Security · Computer Science 2023-04-21 Enze Liu , Gautam Akiwate , Mattijs Jonker , Ariana Mirian , Grant Ho , Geoffrey M. Voelker , Stefan Savage

In this paper, we present findings from a large-scale and long-term phishing experiment that we conducted in collaboration with a partner company. Our experiment ran for 15 months during which time more than 14,000 study participants…

Cryptography and Security · Computer Science 2021-12-15 Daniele Lain , Kari Kostiainen , Srdjan Capkun

Smart contract vulnerabilities, particularly improper Access Control that allows unauthorized execution of restricted functions, have caused billions of dollars in losses. GitHub hosts numerous smart contract repositories containing source…

Software Engineering · Computer Science 2025-10-23 Chong Chen , Jiachi Chen , Lingfeng Bao , David Lo , Yanlin Wang , Zhenyu Shan , Ting Chen , Guangqiang Yin , Jianxing Yu , Zibin Zheng