all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Do Neutral Prompts Produce Insecure Code? FormAI-v2 Dataset: Labelling Vulnerabilities in Code Generated by Large Language Models

Add to bookmarks
April 30, 2024, 4:11 a.m. | Norbert Tihanyi, Tamas Bisztray, Mohamed Amine Ferrag, Ridhi Jain, Lucas C. Cordeiro

cs.CR updates on arXiv.org arxiv.org

arXiv:2404.18353v1 Announce Type: new
Abstract: This study provides a comparative analysis of state-of-the-art large language models (LLMs), analyzing how likely they generate vulnerabilities when writing simple C programs using a neutral zero-shot prompt. We address a significant gap in the literature concerning the security properties of code produced by these models without specific directives. N. Tihanyi et al. introduced the FormAI dataset at PROMISE '23, containing 112,000 GPT-3.5-generated C programs, with over 51.24% identified as vulnerable. We expand that work …

address analysis art arxiv code cs.ai cs.cr cs.pl dataset gap generated insecure language language models large literature llms prompt prompts simple state study vulnerabilities writing

Visit resource

More from arxiv.org / cs.CR updates on arXiv.org

"Do Anything Now": Characterizing and Evaluating In-The-Wild Jailbreak Prompts on Large Language Models 2 hours ago | arxiv.org
adversarial arxiv attack attack vector +17
SWAT: A System-Wide Approach to Tunable Leakage Mitigation in Encrypted Data Stores 2 hours ago | arxiv.org
arxiv cs.cr data data stores +12
Online Self-Supervised Deep Learning for Intrusion Detection Systems 2 hours ago | arxiv.org
arxiv cs.cr cs.lg cs.ni +16
Smooth Anonymity for Sparse Graphs 2 hours ago | arxiv.org
aim anonymity arxiv cs.cr +19
Towards Evaluating the Robustness of Automatic Speech Recognition Systems via Audio Style Transfer 2 hours ago | arxiv.org
adversarial application arxiv asr +18
Encrypted Container File: Design and Implementation of a Hybrid-Encrypted Multi-Recipient File Structure 2 hours ago | arxiv.org
artifacts arxiv cloud cloud-based +30
Words Blending Boxes. Obfuscating Queries in Information Retrieval using Differential Privacy 2 hours ago | arxiv.org
arxiv cs.cr cs.ir differential privacy +12
A Quantum of QUIC: Dissecting Cryptography with Post-Quantum Insights 2 hours ago | arxiv.org
arxiv claims cryptography cs.cr +18
Cross-Input Certified Training for Universal Perturbations 2 hours ago | arxiv.org
accuracy adversarial adversarial attacks arxiv +16

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Penetration Tester, Retail Engineering, Early Career

@ Apple | Austin, Texas, United States
View on infosec-jobs.com

Principal Product Security Engineer

@ Palo Alto Networks | Bengaluru, India
View on infosec-jobs.com

Senior Manager/ Director, Cyber

@ McGrathNicol | Brisbane
View on infosec-jobs.com