SRCH:1D84DCB1
Code Property Graph Fidelity and GCN-Based False Positive Prediction Accuracy in SAST Tools
Abstract
Abstract: This report synthesises findings from 5 peer-reviewed papers addressing the following research question: What is the correlation between Code Property Graph representation fidelity and the classification accuracy of GCN-based false positive predictors across diverse SAST tools. Software vulnerabilities pose significant security challenges and potential risks to society, necessitating extensive efforts in automated vulnerability detection. There are two popular lines of work to address automated vulnerability detection. 5 claims were extracted from source literature; 5 were independently verified against retrieved documents. An automated multi-reviewer quality assessment produced a score of 8.7/10. This report is a machine-generated literature synthesis and does not constitute original research.
Research Question
What is the correlation between Code Property Graph representation fidelity and the classification accuracy of GCN-based false positive predictors across diverse SAST tools?
Verification Level
| Paper level | L2, Source-grounded claims | |
| Source-grounded claims | 5 | |
| Claim record source | not publicly specified |
Descriptive public verification status only; aggregate claim counts are public, but individual claim records are not exposed here.
Quality Tier
| Tier | Flagship candidate | |
| Basis | Review score, verified-claim count, and public artifact coverage meet flagship-candidate thresholds. |
Descriptive public triage only; this tier does not alter current publication or DOI behavior.
Quality Dimensions
| Evidence strength | MEDIUM | |
| Citation grounding | MEDIUM | |
| Uncertainty disclosure | MEDIUM | |
| Reproducibility status | HIGH |
Automated triage signals derived from public fields; not human peer review or independent validation.
Correction Record
| Status | CURRENT |
| Correction count | 0 |
| Manifest contract | paper-manifest-v1.1 |
| Correction contract | correction-record-v1 |
Public corrections are additive records. Current status does not claim the synthesis is error-free.
Provenance
| Publisher | Assignee Research |
| Public provenance | L4, External archival record |
| Report artifact | Available |
| External record | Registered |
| Claim lineage | 5 aggregate source-grounded claims |
| Review method | Automated multi-reviewer assessment |
| Quality guide | How to read scores, claims, manifests, and evidence links |
| Provenance contract | source-provenance-v1 |
| Note | Machine-generated synthesis of existing literature. Not primary research. |