Lenarduzzi V, Taibi D, Tosi D, et al. Open source software evaluation, selection, and adoption: A systematic literature review [C] //Proc of the 46th Euromicro Conf on Software Engineering and Advanced Applications (SEAA). Piscataway, NJ: IEEE, 2020: 437-444
[2] Li Zhen, Zou Deqing, Xu Shouhuai, et al. VulDeePecker: A deep learning-based System for vulnerability detection [C] //Proc of the 2018 Network and Distributed System Security Symp. San Diego, CA: ISOC, 2018
[3] Dam H K, Tran T, Pham T T M, et al. Automatic feature learning for predicting vulnerable software components [J]. IEEE Trans on Software Engineering, 2021, 47(1): 67-85
[4] Duan Xu, Wu Jingzheng, Ji Shouling, et al. VulSniper: Focus your attention to shoot fine-grained vulnerabilities [C] //Proc of the 28th Int Joint Conf on Artificial Intelligence (IJCAI-19). Palo Alto, CA: AAAI Press, 2019: 4665-4671
[5] Li Jian, He Pinjia, Zhu Jieming, et al. Software defect prediction via convolutional neural network [C] /Proc of the 2017 IEEE Int Conf on Software Quality, Reliability and Security (QRS). Piscataway, NJ: IEEE, 2017: 318-328
[6] Liang Hongliang, Sun Lu, Wang Meilin, et al. Deep learning with customized abstract syntax tree for bug localization [J]. IEEE Access, 2019, 7(1): 116309-116320
[7] Lin Guanjun, Zhang Jun, Luo Wei, et al. Poster: Vulnerability discovery with function representation learning from unlabeled projects [C] //Proc of the 2017 ACM SIGSAC Conf on Computer and Communications. New York: ACM, 2017: 2539-2541
[8] Wang Song, Liu Taiyue, Tan Lin. Automatically learning semantic features for defect prediction [C] //Proc of the 38th IEEE Int Conf on Software Engineering. New York: ACM, 2016: 297-308
[9] 孙伟, 陈林. 基于抽象语法树的C#源代码SQL注入漏洞检测算法 [J]. 信息安全研究, 2015, 1(2): 112-125
[10] Mou Lili, Li Ge, Zhang Lu, et al. Convolutional neural networks over tree structures for programming language processing [C] //Proc of the 30th AAAI Conf on Artificial Intelligence. Palo Alto, CA: AAAI Press, 2016: 1287-1293
[11] Zhang Jian, Wang Xu, Zhang Hongyu, et al. A novel neural source code representation based on abstract syntax tree [C] //Proc of the 41st Int Conf on Software Engineering (ICSE). Piscataway, NJ: IEEE, 2019: 783-794
[12] Bendersky E. Pycparser: Complete C99 parser in pure Python [EB/OL]. [2020-03-26]. https://github.com/eliben/pycparser
[13] Socher R, Pennington J, Huang E H, et al. Semi-supervised recursive autoencoders for predicting sentiment distributions [C] //Proc of the
Conf on Empirical Methods in Natural Language Processing. Stroudsburg, PA: ACL, 2011: 151-161
[14] NVD: National vulnerability database [EB/OL]. [2021-05-14]. https://nvd.nist.gov/
[15] Software assurance reference dataset [EB/OL]. [2021-05-14]. https://samate.nist.gov/SRD/index.php
[16] 2019 CWE top 25 most dangerous software errors [EB/OL]. [2021-01-21]. https://cwe.mitre.org/archive/2019_cwe_top25.html