{"id":"W2289443514","doi":"10.1016/j.jss.2016.02.048","title":"Mining trends and patterns of software vulnerabilities","year":2016,"lang":"en","type":"article","venue":"Journal of Systems and Software","topic":"Software Engineering Research","field":"Computer Science","cited_by":51,"is_retracted":false,"has_abstract":false,"ca_institutions":"Concordia University; Toronto Metropolitan University","funders":"","keywords":"Secure coding; Computer science; Computer security; Vulnerability (computing); Software; Security bug; Vulnerability management; Buffer overflow; SQL injection; Software security assurance; Software bug; Vulnerability assessment; World Wide Web; Information security; Operating system","routes":{"ca_aff":true,"ca_fund":false,"ca_venue":false,"about_ca":false,"invisible_to_affiliation_only":false},"retraction":null,"screen":null,"direct_labels":[],"prediction":{"model_version":"codex-gemma-dda1882f352a","candidate_categories":[],"consensus_categories":[],"category_scores_codex":[0.0006891981,0.0001221026,0.0003475453,0.0003214678,0.00005406155,0.00009454806,0.0003297916,0.00006727074,0.000006646626],"category_scores_gemma":[0.0009870625,0.00007532797,0.00006132809,0.0001447484,0.00005300329,0.0004814441,0.0001432982,0.0001096135,4.422936e-7],"about_ca_system_candidate":false,"about_ca_system_consensus":false,"about_ca_system_score_codex":0.00003536726,"about_ca_system_score_gemma":0.00005288499,"about_ca_topic_candidate":false,"about_ca_topic_consensus":false,"about_ca_topic_score_codex":0.00003222109,"about_ca_topic_score_gemma":0.000002140279,"domain_scores_codex":[0.9986892,0.00006769357,0.0004609142,0.0001642599,0.0004102376,0.0002077458],"domain_scores_gemma":[0.9976459,0.001440511,0.0002438155,0.0002479477,0.0002665271,0.000155298],"domain_codex":null,"domain_gemma":null,"domain_candidate":null,"domain_consensus":null,"study_design_codex":"observational","study_design_gemma":"observational","study_design_scores_codex":[0.00001178452,0.00002358863,0.8071685,0.0004091203,0.00006721561,0.00005571877,0.001590441,0.00004714561,0.0002610815,0.0004126757,0.0004600795,0.1894926],"study_design_scores_gemma":[0.002983232,0.001646321,0.9785687,0.00495331,0.00004022417,0.002486541,0.0009762943,0.0004466978,0.001001038,0.0004965498,0.00573421,0.0006668686],"study_design_candidate":"observational","study_design_consensus":"observational","genre_codex":"empirical","genre_gemma":"empirical","genre_scores_codex":[0.6392389,0.002204781,0.3579589,0.0001583028,0.0003558907,0.00003213566,0.000009120693,0.00003901996,0.000002926521],"genre_scores_gemma":[0.9869351,0.0001204954,0.01239312,0.000006903286,0.0001235703,0.000002686242,1.322534e-7,0.00001175873,0.0004062681],"genre_candidate":"empirical","genre_consensus":"empirical","teacher_disagreement_score":0.3476962,"threshold_uncertainty_score":0.3071785,"prediction_status":"machine_predicted_unvalidated"},"machine_scores":{"provisional":true,"baseline":true,"maturity_gate_passed":false,"score_opus":0.01913465915809343,"score_gpt":0.2533022777641016,"score_spread":0.2341676186060082,"validation_status":"score_only:v0-immature-baseline","note":"Baseline scores from an immature model (maturity gate not passed). Scores rank; they never assert a category."}}