LLM agent to automatically set up arbitrary projects and run their test suites

[TMLR] A curated list of language modeling researches for code (and other software engineering activities), plus related datasets.

the LLM vulnerability scanner

Source code of https://whatsrc.org/

Collection of malware source code for a variety of platforms in an array of different programming languages.

Pairing Security Advisories with Vulnerable Functions Using Open-Source LLMs - DIMVA '24

A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling, books, articles and a plethora of learning resources from t…

Distribute and run LLMs with a single file.

This repository demonstrates LLM execution on CPUs using packages like llamafile, emphasizing low-latency, high-throughput, and cost-effective benefits for inference and serving.

LangChain, Llama2-Chat, and zero- and few-shot prompting are used to generate synthetic datasets for IR and RAG system evaluation

Large Language Models for Software Engineering

Starter pack for NeurIPS LLM Efficiency Challenge 2023.

💯🍵⚙️ Linter for security commit messages.

Inference code for Llama models

Fine-tuning an LLM using a Generic Workflow and Best Practices with PyTorch

Open-source AI orchestration framework for building context-engineered, production-ready LLM applications. Design modular pipelines and agent workflows with explicit control over retrieval, routing…

Finding Fixed Vulnerabilities with Off-the-Shelf Static Analysis

An ever-growing list of resources for data-driven vulnerability assessment and prioritization

VFCFinder: Searching for the Missing Vulnerability Fixing Commits

PoC for detecting disclosure mechanisms for open source projects

A deep learning model for localizing bugs in C/C++ source code (USENIX'23)

Stable Diffusion with Text-to-Image and Image-to-Text

OSS-Fuzz vulnerabilities for OSV.

The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously improve the S2C2F guide which outlines and defines how to s…

Gives criticality score for an open source project

A learning rate range test implementation in PyTorch

Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the code they maintain, produce and use.

Open Source Software Secure Supply Chain Framework

Collection of papers and resources for data augmentation for NLP.

Data augmentation for NLP, presented at EMNLP 2019