PulseAugur
EN
LIVE 07:28:25

New benchmarks released for LLM-based Java and Rust vulnerability detection

Two new benchmarks, JavaVulBench and RustMizan, have been released to evaluate the capabilities of large language models in detecting software vulnerabilities. JavaVulBench focuses on Java methods and includes over 1,740 Common Vulnerabilities and Exposures (CVEs), offering multiple realistic split strategies for testing. RustMizan addresses Rust vulnerabilities with compilable code and a mutation framework to test for contamination and robustness. Both benchmarks aim to provide more realistic and comprehensive evaluations than previous datasets, which often used small code snippets and lacked contamination awareness. AI

IMPACT These benchmarks will enable more rigorous evaluation of LLMs for code security, potentially accelerating the adoption of AI in software development security.

RANK_REASON The cluster contains two research papers introducing new benchmarks for evaluating AI models on software vulnerability detection.

Read on arXiv cs.AI →

AI-generated summary · Google Gemini · from 2 sources. How we write summaries →

New benchmarks released for LLM-based Java and Rust vulnerability detection

COVERAGE [2]

  1. arXiv cs.AI TIER_1 English(EN) · Norbert Sandor Szolnoki, Gabor Antal ·

    JavaVulBench: A Java Vulnerability Benchmark with Realistic Splits, a Unified Multi-Backend Harness, and a Leakage-Aware Evaluation Mode

    arXiv:2607.02825v1 Announce Type: cross Abstract: We release \textsc{JavaVulBench}, a benchmark dataset and evaluation harness for Java vulnerability detection. The dataset contains $\sim$30{,}600 Java methods spanning 1{,}740 CVEs and 700+ projects, labelled at both method and l…

  2. arXiv cs.AI TIER_1 English(EN) · Tarek Elsayed, Shiping Yang, Eunsong Koh, Sanika Goyal, Vincent Huang, Paul Ngo, Nathan Young, Mohammad Omidvar Tehrani, Alvyn Kang, Arnell Kang, Zeyu Chen, Ang\'elica Moreira, Xuan Feng, Angel X. Chang, Nick Sumner, Steven Y. Ko ·

    RustMizan: A Compilable, Contamination-Aware Benchmarking Framework for Rust Vulnerabilities

    arXiv:2607.04729v1 Announce Type: cross Abstract: LLM agents are increasingly applied to vulnerability analysis, but existing benchmarks have not kept pace. They typically rely on small non-compilable snippets, focus on binary classification (vulnerable or not), and do not accoun…