MarkLee131/Static-Analyzer-Research

# Static Analyzer Research ## Contents | [2026](#2026) | [2025](#2025) | [2024](#2024) | [2023](#2023) | [2022](#2022) | ## All Papers ## 2026 ### PLDI 2026 * [Bridging Coverage and Confidence: Reliable Static False Alarm Elimination via Input-Agnosticity](https://doi.org/10.1145/3808301) Jiayi Wang, Yu Wang, Linzhang Wang, and Ke Wang. 2026. Bridging Coverage and Confidence: Reliable Static False Alarm Elimination via Input-Agnosticity. Proc. ACM Program. Lang. PLDI. https://doi.org/10.1145/3808301. ## 2025 ### ICSE 2025 * [An Extensive Empirical Study of Nondeterministic Behavior in Static Analysis Tools](https://doi.org/10.1109/ICSE55347.2025.00125) Miao Miao, Austin Mordahl, Dakota Soles, Alice Beideck, and Shiyi Wei. 2025. An Extensive Empirical Study of Nondeterministic Behavior in Static Analysis Tools. In Proceedings of the 47th IEEE/ACM International Conference on Software Engineering (ICSE 2025). IEEE. https://doi.org/10.1109/ICSE55347.2025.00125. ### OOPSLA 2025 * [Validating Soundness and Completeness in Pattern-Match Coverage Analyzers](https://doi.org/10.1145/3763171) Stefanos Chaliasos, Thodoris Sotiropoulos, Georgios-Petros Drosos, Charalambos Mitropoulos, Dimitris Mitropoulos, and Diomidis Spinellis. 2025. Validating Soundness and Completeness in Pattern-Match Coverage Analyzers. Proc. ACM Program. Lang. 9, OOPSLA. https://doi.org/10.1145/3763171. ### FSE 2025 * [Understanding Industry Perspectives of Static Application Security Testing (SAST) Evaluation](https://doi.org/10.1145/3729404) Yuan Li, Peisen Yao, Kan Yu, Chengpeng Wang, Yaoyang Ye, Song Li, Meng Luo, Yepang Liu, and Kui Ren. 2025. Understanding Industry Perspectives of Static Application Security Testing (SAST) Evaluation. Proc. ACM Softw. Eng. 2, FSE. https://doi.org/10.1145/3729404. ### SOSP 2025 * [KNighter: Transforming Static Analysis with LLM-Synthesized Checkers](https://dl.acm.org/doi/pdf/10.1145/3731569.3764827) Chenyuan Yang, Zijie Zhao, Zichen Xie, Haoyu Li, and Lingming Zhang. 2025. KNighter: Transforming Static Analysis with LLMSynthesized Checkers. In ACM SIGOPS 31st Symposium on Operating Systems Principles (SOSP ’25), October 13–16, 2025, Seoul, Republic of Korea. ACM, New York, NY, USA, 15 pages. https://doi.org/10.1145/3731569.3764827 ### ASE 2025 * [Fact-Aligned and Template-Constrained Static Analyzer Rule Enhancement with LLMs](https://mingwen-cs.github.io/paper/ASE-2025-Camera-Ready.pdf) Zongze Jiang, Ming Wen, Ge Wen, Hai Jin. 2025. Fact-Aligned and Template-Constrained Static Analyzer Rule Enhancement with LLMs. ### arXiv (Preprint) * [StaAgent: An Agentic Framework for Testing Static Analyzers](https://arxiv.org/abs/2507.15892) Elijah Nnorom, Md Basim Uddin Ahmed, Jiho Shin, Hung Viet Pham, and Song Wang. 2025. StaAgent: An Agentic Framework for Testing Static Analyzers. arXiv:2507.15892. https://arxiv.org/abs/2507.15892. ## 2024 ### ISSTA 2024 * [Characterizing and Detecting Program Representation Faults of Static Analysis Frameworks](https://www.shinhwei.com/SAScope_ISSTA_2024.pdf) Huaien Zhang, Yu Pei, Shuyun Liang, Zezhong Xing, and Shin Hwei Tan. 2024. Characterizing and Detecting Program Representation Faults of Static Analysis Frameworks. In Proceedings of the 33rd ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA ’24), September 16–20, 2024, Vienna, Austria. ACM, New York, NY, USA, 13 pages. https://doi.org/ 10.1145/3650212.3680398 ### FSE 2024 * [Static Application Security Testing Tools for Smart Contracts: How Far Are We?](https://doi.org/10.1145/3660772) Kaixuan Li, Yue Xue, Sen Chen, Han Liu, Kairan Sun, Ming Hu, Haijun Wang, Yang Liu, and Yixiang Chen. 2024. Static Application Security Testing (SAST) Tools for Smart Contracts: How Far Are We? Proc. ACM Softw. Eng. 1, FSE, Article 65 (July 2024), 24 pages. https://doi.org/10.1145/3660772. * [Finding and Understanding Defects in Static Analyzers by Constructing Automated Oracles](https://doi.org/10.1145/3660781) Weigang He, Peng Di, Mengli Ming, Chengyu Zhang, Ting Su, Shijie Li, and Yulei Sui. 2024. Finding and Understanding Defects in Static Analyzers by Constructing Automated Oracles. Proc. ACM Softw. Eng. 1, FSE, Article 74 (July 2024), 23 pages. https://doi.org/10.1145/3660781. * [Understanding and Detecting Annotation-Induced Faults of Static Analyzers](https://doi.org/10.1145/3643759) Huaien Zhang, Yu Pei, Shuyun Liang, and Shin Hwei Tan. 2024. Understanding and Detecting Annotation-Induced Faults of Static Analyzers. Proc. ACM Softw. Eng. 1, FSE, Article 33 (July 2024), 23 pages. https://doi.org/10.1145/3643759. ### ISSTA 2024 * [An Empirical Study of Static Analysis Tools for Secure Code Review](https://dl.acm.org/doi/pdf/10.1145/3650212.3680313) Wachiraphan Charoenwet, Patanamon Thongtanunam, Van-Thuan Pham, and Christoph Treude. 2024. An Empirical Study of Static Analysis Tools for Secure Code Review. In Proceedings of ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2024). ACM, New York, NY, USA, 13 pages. https://dl.acm.org/doi/pdf/10.1145/3650212.3680313. ### ASE 2024 * [Interrogation Testing of Program Analyzers for Soundness and Precision Issues](https://doi.org/10.1145/3691620.3695034) David Kaindlstorfer, Anastasia Isychev, Valentin Wüstholz, and Maria Christakis. 2024. Interrogation Testing of Program Analyzers for Soundness and Precision Issues. In Proceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering (ASE 2024). ACM, New York, NY, USA. https://doi.org/10.1145/3691620.3695034. * [Constraint-Based Test Oracles for Program Analyzers](https://doi.org/10.1145/3691620.3695035) Markus Fleischmann, David Kaindlstorfer, Anastasia Isychev, Valentin Wüstholz, and Maria Christakis. 2024. Constraint-Based Test Oracles for Program Analyzers. In Proceedings of the 39th IEEE/ACM International Conference on Automated Software Engineering (ASE 2024). ACM, New York, NY, USA. https://doi.org/10.1145/3691620.3695035. ## 2023 ### ICSE 2023 * [ECSTATIC: An Extensible Framework for Testing and Debugging Configurable Static Analysis](https://doi.org/10.1109/ICSE48619.2023.00056) Austin Mordahl, Zenong Zhang, Dakota Soles, and Shiyi Wei. 2023. ECSTATIC: An Extensible Framework for Testing and Debugging Configurable Static Analysis. In Proceedings of the 45th International Conference on Software Engineering (ICSE 2023). IEEE, 550–562. https://doi.org/10.1109/ICSE48619.2023.00056. ### FSE 2023 * [Comparison and Evaluation on Static Application Security Testing (SAST) Tools for Java](https://doi.org/10.1145/3611643.3616262) Kaixuan Li, Sen Chen, Lingling Fan, Ruitao Feng, Han Liu, Chengwei Liu, Yang Liu, and Yixiang Chen. 2023. Comparison and Evaluation on Static Application Security Testing (SAST) Tools for Java. In Proceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering (ESEC/FSE 2023). Association for Computing Machinery, New York, NY, USA, 921–933. https://doi.org/10.1145/3611643.3616262. * [Statfier: Automated Testing of Static Analyzers via Semantic-Preserving Program Transformations](https://doi.org/10.1145/3611643.3616272) Huaien Zhang, Yu Pei, Junjie Chen, and Shin Hwei Tan. 2023. Statfier: Automated Testing of Static Analyzers via Semantic-Preserving Program Transformations. In Proceedings of the 31st ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering (ESEC/FSE 2023). Association for Computing Machinery, New York, NY, USA, 237–249. https://doi.org/10.1145/3611643.3616272. ### ISSTA 2023 * [A Comprehensive Study on Quality Assurance Tools for Java](https://doi.org/10.1145/3597926.3598056) Han Liu, Sen Chen, Ruitao Feng, Chengwei Liu, Kaixuan Li, Zhengzi Xu, Liming Nie, Yang Liu, and Yixiang Chen. 2023. A Comprehensive Study on Quality Assurance Tools for Java. In Proceedings of the 32nd ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA 2023). Association for Computing Machinery, New York, NY, USA, 285–297. https://doi.org/10.1145/3597926.3598056. ## 2022 ### ICPC 2022 * [Find Bugs in Static Bug Finders](https://doi.org/10.1145/3524610.3527899) Junjie Wang, Yuchao Huang, Song Wang, Qing Wang. 2021. Find Bugs in Static Bug Finders. In Proceedings of The 30th International Conference on Program Comprehension (ICPC 2022). ACM, New York, NY, USA, 12 pages. https://doi.org/10.1145/3524610.3527899. ## License This documentation is licensed under CC0 1.0 Universal. Individual papers retain their original copyrights.