Experimenting with ChatGPT's Vulnerability Volcano and Prompt Party Tricks
hackernoon.comAppendix
A. Details of Code Language Models
B. Finding Security Vulnerabilities in GitHub Copilot
C. Other Baselines Using ChatGPT
D. Effect of Different Number of Few-shot Examples
E. Effectiveness in Generating Specific Vulnerabilities for C Codes
F. Security Vulnerability Results after Fuzzy Code Deduplication
G. Detailed Results of Transferability of the Generated Nonsecure Prompts
H. Details of Generating non-secure prompts Dataset
I. Detailed Results of Evaluating CodeLMs using Non-secure Dataset
J. Effect of Sampling Temperature
K. Effectiveness of the Model Inversion Scheme in Reconstructing the Vulnerable Codes
L. Qualitative Examples Generated by CodeGen and ChatGPT
M. Qualitative Examples Generated by GitHub Copilot
V. EXPERIMENTS
In this section, we present the results of our experimental evaluation. First, we explain the details of the experimental setup. Then, we provide the results of finding the models’ security vulnerabilities and study the efficiency and scalability of ...
Copyright of this story solely belongs to hackernoon.com . To see the full text click HERE