{"id":"https://openalex.org/W7124888387","doi":"https://doi.org/10.1109/aiware69974.2025.00024","title":"Security in the Wild: An Empirical Analysis of LLM-Powered Applications and Local Inference Frameworks","display_name":"Security in the Wild: An Empirical Analysis of LLM-Powered Applications and Local Inference Frameworks","publication_year":2025,"publication_date":"2025-11-19","ids":{"openalex":"https://openalex.org/W7124888387","doi":"https://doi.org/10.1109/aiware69974.2025.00024"},"language":null,"primary_location":{"id":"doi:10.1109/aiware69974.2025.00024","is_oa":false,"landing_page_url":"https://doi.org/10.1109/aiware69974.2025.00024","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 2nd IEEE/ACM International Conference on AI-powered Software (AIware)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5123395124","display_name":"Julia Gomez-Rangel","orcid":null},"institutions":[{"id":"https://openalex.org/I96749437","display_name":"Texas A&M University \u2013 Corpus Christi","ror":"https://ror.org/01mrfdz82","country_code":"US","type":"education","lineage":["https://openalex.org/I96749437"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Julia Gomez-Rangel","raw_affiliation_strings":["Texas A&#x0026;M University-Corpus Christi,Department of Computer Science,Corpus Christi,USA"],"affiliations":[{"raw_affiliation_string":"Texas A&#x0026;M University-Corpus Christi,Department of Computer Science,Corpus Christi,USA","institution_ids":["https://openalex.org/I96749437"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5030733829","display_name":"Young Lee","orcid":"https://orcid.org/0000-0003-3589-3120"},"institutions":[{"id":"https://openalex.org/I1335518801","display_name":"Texas A&M University \u2013 San Antonio","ror":"https://ror.org/0084njv03","country_code":"US","type":"education","lineage":["https://openalex.org/I1335518801"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Young Lee","raw_affiliation_strings":["Texas A&#x0026;M University-San Antonio,Engineering and Mathematical Sciences,Department of Computational,San Antonio,USA"],"affiliations":[{"raw_affiliation_string":"Texas A&#x0026;M University-San Antonio,Engineering and Mathematical Sciences,Department of Computational,San Antonio,USA","institution_ids":["https://openalex.org/I1335518801"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5123422361","display_name":"Bozhen Liu","orcid":null},"institutions":[{"id":"https://openalex.org/I96749437","display_name":"Texas A&M University \u2013 Corpus Christi","ror":"https://ror.org/01mrfdz82","country_code":"US","type":"education","lineage":["https://openalex.org/I96749437"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Bozhen Liu","raw_affiliation_strings":["Texas A&#x0026;M University-Corpus Christi,Department of Computer Science,Corpus Christi,USA"],"affiliations":[{"raw_affiliation_string":"Texas A&#x0026;M University-Corpus Christi,Department of Computer Science,Corpus Christi,USA","institution_ids":["https://openalex.org/I96749437"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5123395124"],"corresponding_institution_ids":["https://openalex.org/I96749437"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.8352749,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"149","last_page":"159"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.28780001401901245,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.28780001401901245,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.19059999287128448,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.18490000069141388,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/inference","display_name":"Inference","score":0.6972000002861023},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5072000026702881},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.43950000405311584},{"id":"https://openalex.org/keywords/asset","display_name":"Asset (computer security)","score":0.3953999876976013},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.37119999527931213},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.35910001397132874},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.35679998993873596},{"id":"https://openalex.org/keywords/empirical-research","display_name":"Empirical research","score":0.34529998898506165}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7107999920845032},{"id":"https://openalex.org/C2776214188","wikidata":"https://www.wikidata.org/wiki/Q408386","display_name":"Inference","level":2,"score":0.6972000002861023},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5072000026702881},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.44130000472068787},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.43950000405311584},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4374000132083893},{"id":"https://openalex.org/C76178495","wikidata":"https://www.wikidata.org/wiki/Q4808784","display_name":"Asset (computer security)","level":2,"score":0.3953999876976013},{"id":"https://openalex.org/C2522767166","wikidata":"https://www.wikidata.org/wiki/Q2374463","display_name":"Data science","level":1,"score":0.388700008392334},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.37119999527931213},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.35910001397132874},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.35679998993873596},{"id":"https://openalex.org/C120936955","wikidata":"https://www.wikidata.org/wiki/Q2155640","display_name":"Empirical research","level":2,"score":0.34529998898506165},{"id":"https://openalex.org/C168167062","wikidata":"https://www.wikidata.org/wiki/Q1117970","display_name":"Component (thermodynamics)","level":2,"score":0.3303000032901764},{"id":"https://openalex.org/C166052673","wikidata":"https://www.wikidata.org/wiki/Q83021","display_name":"Empirical evidence","level":2,"score":0.3271999955177307},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.32179999351501465},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.3001999855041504},{"id":"https://openalex.org/C131275738","wikidata":"https://www.wikidata.org/wiki/Q7445023","display_name":"Security bug","level":5,"score":0.298799991607666},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.2944999933242798},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.2833999991416931},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.28029999136924744},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.27399998903274536},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.26460000872612}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/aiware69974.2025.00024","is_oa":false,"landing_page_url":"https://doi.org/10.1109/aiware69974.2025.00024","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 2nd IEEE/ACM International Conference on AI-powered Software (AIware)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.41660192608833313,"id":"https://metadata.un.org/sdg/12","display_name":"Responsible consumption and production"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":27,"referenced_works":["https://openalex.org/W2085952809","https://openalex.org/W2521933324","https://openalex.org/W2766411424","https://openalex.org/W2902517157","https://openalex.org/W2963779160","https://openalex.org/W2986159792","https://openalex.org/W3036270494","https://openalex.org/W3215034625","https://openalex.org/W4206588522","https://openalex.org/W4210493608","https://openalex.org/W4224319280","https://openalex.org/W4385287322","https://openalex.org/W4392427708","https://openalex.org/W4393278146","https://openalex.org/W4399667811","https://openalex.org/W4400121375","https://openalex.org/W4400582844","https://openalex.org/W4402683773","https://openalex.org/W4405181589","https://openalex.org/W4405544059","https://openalex.org/W4406302454","https://openalex.org/W4406738283","https://openalex.org/W4407197060","https://openalex.org/W4408529725","https://openalex.org/W4411449706","https://openalex.org/W4413081720","https://openalex.org/W4413460102"],"related_works":[],"abstract_inverted_index":{"The":[0],"rapid":[1],"rise":[2],"of":[3,40,53,93,137],"open-source":[4,148],"applications":[5],"and":[6,17,30,64,74,89,105,127,134,142,163],"frameworks":[7],"powered":[8],"by":[9,102],"large":[10],"language":[11],"models":[12],"(LLMs)":[13],"has":[14],"introduced":[15],"new":[16],"complex":[18],"security":[19,38,54,80,138,158],"risks.":[20],"While":[21],"recent":[22],"studies":[23],"have":[24],"explored":[25],"prompt":[26],"injection,":[27],"model":[28],"misuse,":[29],"runtime":[31],"vulnerabilities":[32,139],"in":[33,140],"isolated":[34],"cases,":[35],"the":[36,83,153,167],"system-wide":[37,79],"risks":[39,81],"this":[41,46],"ecosystem":[42],"remain":[43],"underexamined.":[44],"In":[45],"paper,":[47],"we":[48],"present":[49],"an":[50],"empirical":[51],"study":[52],"advisories":[55],"reported":[56],"through":[57],"GitHub":[58],"for":[59,156],"popular":[60],"LLM-Powered":[61],"Applications":[62],"(LPAs)":[63],"their":[65],"underlying":[66],"Local":[67],"Inference":[68],"Frameworks":[69],"(LIFs,":[70],"such":[71],"as":[72],"llama.cpp":[73],"vLLM),":[75],"aiming":[76],"to":[77,116,146],"surface":[78],"across":[82,166],"LLM":[84,170],"software":[85,171],"stack.":[86,172],"We":[87,130],"curate":[88],"analyze":[90],"a":[91],"dataset":[92],"<tex":[94],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[95],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">$\\mathbf{5":[96],"0}$</tex>":[97],"real-world":[98],"vulnerabilities,":[99,121],"classifying":[100],"them":[101],"type,":[103],"severity,":[104],"root":[106],"cause.":[107],"Our":[108,150],"analysis":[109],"reveals":[110],"different":[111],"risk":[112],"profiles:":[113],"LPAs":[114,141],"tend":[115],"suffer":[117],"from":[118],"input-driven":[119],"web":[120],"while":[122],"LIFs":[123,143],"exhibit":[124],"memory":[125],"safety":[126],"dependency-related":[128],"issues.":[129],"also":[131],"identify":[132],"common":[133],"unique":[135],"characteristics":[136],"when":[144],"compared":[145],"traditional":[147],"projects.":[149],"findings":[151],"highlight":[152],"urgent":[154],"need":[155],"systematic":[157],"practices,":[159],"better":[160],"disclosure":[161],"mechanisms,":[162],"lifecycleaware":[164],"defenses":[165],"rapidly":[168],"evolving":[169]},"counts_by_year":[],"updated_date":"2026-01-21T23:35:09.540996","created_date":"2026-01-21T00:00:00"}