{"id":"https://openalex.org/W7160430624","doi":"https://doi.org/10.1109/saner-c67878.2026.00042","title":"Persistent Human Feedback, LLMs, and Static Analyzers for Secure Code Generation and Vulnerability Detection","display_name":"Persistent Human Feedback, LLMs, and Static Analyzers for Secure Code Generation and Vulnerability Detection","publication_year":2026,"publication_date":"2026-03-17","ids":{"openalex":"https://openalex.org/W7160430624","doi":"https://doi.org/10.1109/saner-c67878.2026.00042"},"language":null,"primary_location":{"id":"doi:10.1109/saner-c67878.2026.00042","is_oa":false,"landing_page_url":"https://doi.org/10.1109/saner-c67878.2026.00042","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2026 IEEE International Conference on Software Analysis, Evolution and Reengineering - Companion (SANER-C)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5031213161","display_name":"Ehsan Firouzi","orcid":"https://orcid.org/0009-0000-7563-4196"},"institutions":[{"id":"https://openalex.org/I43980791","display_name":"Clausthal University of Technology","ror":"https://ror.org/04qb8nc58","country_code":"DE","type":"education","lineage":["https://openalex.org/I43980791"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Ehsan Firouzi","raw_affiliation_strings":["Technische Universit&#x00E4;t Clausthal,Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Technische Universit&#x00E4;t Clausthal,Germany","institution_ids":["https://openalex.org/I43980791"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5135472336","display_name":"Mohammad Ghafari","orcid":null},"institutions":[{"id":"https://openalex.org/I43980791","display_name":"Clausthal University of Technology","ror":"https://ror.org/04qb8nc58","country_code":"DE","type":"education","lineage":["https://openalex.org/I43980791"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Mohammad Ghafari","raw_affiliation_strings":["Technische Universit&#x00E4;t Clausthal,Germany"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Technische Universit&#x00E4;t Clausthal,Germany","institution_ids":["https://openalex.org/I43980791"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":21.7884,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.99081958,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":95,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"265","last_page":"272"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.3310000002384186,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.3310000002384186,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.11580000072717667,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.08739999681711197,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.5019000172615051},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.4359999895095825},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.3260999917984009},{"id":"https://openalex.org/keywords/intrusion-detection-system","display_name":"Intrusion detection system","score":0.2685999870300293},{"id":"https://openalex.org/keywords/scheme","display_name":"Scheme (mathematics)","score":0.26660001277923584}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.66839998960495},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.5019000172615051},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.4359999895095825},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3411000072956085},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.3260999917984009},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.3240000009536743},{"id":"https://openalex.org/C35525427","wikidata":"https://www.wikidata.org/wiki/Q745881","display_name":"Intrusion detection system","level":2,"score":0.2685999870300293},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.26660001277923584},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.23229999840259552},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.21889999508857727}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/saner-c67878.2026.00042","is_oa":false,"landing_page_url":"https://doi.org/10.1109/saner-c67878.2026.00042","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2026 IEEE International Conference on Software Analysis, Evolution and Reengineering - Companion (SANER-C)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":39,"referenced_works":["https://openalex.org/W4308627645","https://openalex.org/W4328028881","https://openalex.org/W4384026520","https://openalex.org/W4396811058","https://openalex.org/W4399567707","https://openalex.org/W4403413475","https://openalex.org/W4403524384","https://openalex.org/W4407392582","https://openalex.org/W4407423361","https://openalex.org/W4408214684","https://openalex.org/W4408952852","https://openalex.org/W4409384710","https://openalex.org/W4410553253","https://openalex.org/W4411306419","https://openalex.org/W4411449759","https://openalex.org/W4411450077","https://openalex.org/W4411552541","https://openalex.org/W4411552543","https://openalex.org/W4411950636","https://openalex.org/W4412125707","https://openalex.org/W4412605456","https://openalex.org/W4412703936","https://openalex.org/W4412837195","https://openalex.org/W4413105341","https://openalex.org/W4413279387","https://openalex.org/W4413925951","https://openalex.org/W4414988681","https://openalex.org/W4415313329","https://openalex.org/W4415647391","https://openalex.org/W4415746190","https://openalex.org/W4415746230","https://openalex.org/W4415746261","https://openalex.org/W4415912611","https://openalex.org/W4416245530","https://openalex.org/W6959659194","https://openalex.org/W7117103063","https://openalex.org/W7123337391","https://openalex.org/W7123350572","https://openalex.org/W7125908675"],"related_works":[],"abstract_inverted_index":{"Existing":[0],"literature":[1],"heavily":[2],"relies":[3],"on":[4,112],"static":[5,36,95],"analysis":[6,71,96],"tools":[7,97],"to":[8,133],"evaluate":[9],"LLMs":[10,132],"for":[11,108,137],"secure":[12,138],"code":[13,22,102,139],"generation":[14,129,140],"and":[15,28,40,54,58,79,104,141],"vulnerability":[16,142],"detection.":[17,143],"We":[18],"reviewed":[19],"1,080":[20],"LLM-generated":[21],"samples,":[23],"built":[24],"a":[25,117,126],"human-validated":[26],"ground-truth,":[27],"compared":[29],"the":[30,48,64,86,92,106],"outputs":[31],"of":[32,47,77,81,94,101],"two":[33],"widely":[34],"used":[35],"security":[37,103],"tools,":[38],"CodeQL":[39,55],"Semgrep,":[41],"against":[42],"this":[43,113],"corpus.":[44],"While":[45],"61%":[46,80],"samples":[49],"were":[50],"genuinely":[51],"secure,":[52,61],"Semgrep":[53],"classified":[56],"60%":[57],"80%":[59],"as":[60,98],"respectively.":[62],"Despite":[63],"apparent":[65],"agreement":[66],"in":[67,125],"aggregate":[68],"statistics,":[69],"per-sample":[70],"reveals":[72],"substantial":[73],"discrepancies:":[74],"only":[75],"65%":[76],"Semgrep's":[78],"CodeQL's":[82],"reports":[83],"correctly":[84],"matched":[85],"ground":[87],"truth.":[88],"These":[89],"results":[90],"question":[91],"reliability":[93],"sole":[99],"evaluators":[100],"underscore":[105],"need":[107],"expert":[109],"feedback.":[110],"Building":[111],"insight,":[114],"we":[115],"propose":[116],"conceptual":[118],"framework":[119],"that":[120],"persistently":[121],"stores":[122],"human":[123],"feedback":[124,136],"dynamic":[127],"retrieval-augmented":[128],"pipeline,":[130],"enabling":[131],"reuse":[134],"past":[135]},"counts_by_year":[{"year":2026,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-05-07T00:00:00"}