I perform research in security, software engineering, productivity, program analysis, machine learning, software maintainability and best practices.
🍵 My projects:
- Secbench - A dataset of 676 security patches (multi-language, single-commits).
- Security Patches Dataset - Collection of security patches.
- SECOM - A convention for security commit messages.
- SECOMlint - A linter for security commit messages. It measures compliance against SECOM.
- SAST - A collection of static analyzers for security.
- Lithium-Slicer - A test minimization tool to help developers create smaller test inputs (i.e., code snippets) in their bug reports (program slicer based on the Mozilla lithium tool).
- ... and many more that will soon be published.
✨ Contributions:
- Infer - I've added models to Meta/Facebook's static analyzer to boost the detection of performance issues in C/C++ (12 weeks internship).