{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,5,13]],"date-time":"2026-05-13T10:19:15Z","timestamp":1778667555541,"version":"3.51.4"},"publisher-location":"New York, NY, USA","reference-count":20,"publisher":"ACM","license":[{"start":{"date-parts":[[2026,4,12]],"date-time":"2026-04-12T00:00:00Z","timestamp":1775952000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2026,4,12]]},"DOI":"10.1145\/3786165.3788441","type":"proceedings-article","created":{"date-parts":[[2026,5,13]],"date-time":"2026-05-13T09:49:18Z","timestamp":1778665758000},"page":"33-40","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["Bridging Code Property Graphs and Language Models for Program Analysis"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-5783-8638","authenticated-orcid":false,"given":"Ahmed","family":"Lekssays","sequence":"first","affiliation":[{"name":"Qatar Computing Research Institute, Doha, Qatar"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2026,5,13]]},"reference":[{"key":"e_1_3_3_2_2_2","doi-asserted-by":"crossref","unstructured":"Guru Bhandari Nikola Gavric and Andrii Shalaginov. 2025. Generating vulnerability security fixes with Code Language Models. Information and Software Technology (2025) 107786.","DOI":"10.1016\/j.infsof.2025.107786"},{"key":"e_1_3_3_2_3_2","doi-asserted-by":"crossref","unstructured":"Charlie Dil Hui Chen and Kostadin Damevski. 2025. Towards higher quality software vulnerability data using LLM-based patch filtering. Journal of Systems and Software (2025) 112581.","DOI":"10.1016\/j.jss.2025.112581"},{"key":"e_1_3_3_2_4_2","doi-asserted-by":"crossref","unstructured":"Osama\u00a0Al Haddad Muhammad Ikram Ejaz Ahmed and Young Lee. 2025. Prompting the Priorities: A First Look at Evaluating LLMs for Vulnerability Triage and Prioritization. arXiv preprint arXiv:https:\/\/arXiv.org\/abs\/2510.18508 (2025).","DOI":"10.1109\/ACSACW69556.2025.00044"},{"key":"e_1_3_3_2_5_2","unstructured":"Yiwei Hu Zhen Li Kedie Shu Shenghua Guan Deqing Zou Shouhuai Xu Bin Yuan and Hai Jin. 2025. SoK: Automated Vulnerability Repair: Methods Tools and Assessments. arXiv preprint arXiv:https:\/\/arXiv.org\/abs\/2506.11697 (2025)."},{"key":"e_1_3_3_2_6_2","doi-asserted-by":"crossref","unstructured":"Yutong Jiao Jiaxuan Han and Cheng Huang. 2025. DeepVulHunter: enhancing the code vulnerability detection capability of LLMs through multi-round analysis. Journal of Intelligent Information Systems 63 6 (2025) 2237\u20132264.","DOI":"10.1007\/s10844-025-00982-0"},{"key":"e_1_3_3_2_7_2","first-page":"4401","volume-title":"34th USENIX Security Symposium (USENIX Security 25)","author":"Kim Youngjoon","year":"2025","unstructured":"Youngjoon Kim, Sunguk Shin, Hyoungshick Kim, and Jiwon Yoon. 2025. Logs In, Patches Out: Automated Vulnerability Repair via { Tree-of-Thought}{ LLM} Analysis. In 34th USENIX Security Symposium (USENIX Security 25). 4401\u20134419."},{"key":"e_1_3_3_2_8_2","first-page":"489","volume-title":"34th USENIX Security Symposium (USENIX Security 25)","author":"Lekssays Ahmed","year":"2025","unstructured":"Ahmed Lekssays, Hamza Mouhcine, Khang Tran, Ting Yu, and Issa Khalil. 2025. { LLMxCPG} :{ Context-Aware} Vulnerability Detection Through Code Property { Graph-Guided} Large Language Models. In 34th USENIX Security Symposium (USENIX Security 25). 489\u2013507."},{"key":"e_1_3_3_2_9_2","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2025.241491"},{"key":"e_1_3_3_2_10_2","unstructured":"Jeremiah Lowin. 2024. FastMCP. https:\/\/github.com\/jlowin\/fastmcp."},{"key":"e_1_3_3_2_11_2","unstructured":"Model Context Protocol Community. 2024. Model Context Protocol Specification. https:\/\/modelcontextprotocol.io\/."},{"key":"e_1_3_3_2_12_2","first-page":"4481","volume-title":"34th USENIX Security Symposium (USENIX Security 25)","author":"Nong Yu","year":"2025","unstructured":"Yu Nong, Haoran Yang, Long Cheng, Hongxin Hu, and Haipeng Cai. 2025. { APPATCH} : Automated adaptive prompting large language models for { Real-World} software vulnerability patching. In 34th USENIX Security Symposium (USENIX Security 25). 4481\u20134500."},{"key":"e_1_3_3_2_13_2","unstructured":"Yujin Potter Wenbo Guo Zhun Wang Tianneng Shi Hongwei Li Andy Zhang Patrick\u00a0Gage Kelley Kurt Thomas and Dawn Song. 2025. Frontier AI\u2019s Impact on the Cybersecurity Landscape. arXiv preprint arXiv:https:\/\/arXiv.org\/abs\/2504.05408 (2025)."},{"key":"e_1_3_3_2_14_2","unstructured":"Rijha Safdar Danyail Mateen Syed\u00a0Taha Ali and Wajahat Hussain. 2025. Real-VulLLM: An LLM Based Assessment Framework in the Wild. arXiv preprint arXiv:https:\/\/arXiv.org\/abs\/2510.04056 (2025)."},{"key":"e_1_3_3_2_15_2","unstructured":"Marco Simoni Aleksandar Fontana Giulio Rossolini and Andrea Saracino. 2025. Improving LLM Reasoning for Vulnerability Detection via Group Relative Policy Optimization. arXiv preprint arXiv:https:\/\/arXiv.org\/abs\/2507.03051 (2025)."},{"key":"e_1_3_3_2_16_2","doi-asserted-by":"crossref","unstructured":"Francesco Sovrano Adam Bauer and Alberto Bacchelli. 2025. Large language models for in-file vulnerability localization can be \u201clost in the end\u201d. Proceedings of the ACM on Software Engineering 2 FSE (2025) 891\u2013913.","DOI":"10.1145\/3715758"},{"key":"e_1_3_3_2_17_2","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.44"},{"key":"e_1_3_3_2_18_2","doi-asserted-by":"publisher","DOI":"10.18653\/v1\/2025.acl-long.1490"},{"key":"e_1_3_3_2_19_2","volume-title":"Proceedings of the 34th USENIX Security Symposium (USENIX Security\u201925), Seattle, WA, USA","author":"Yu Zheng","year":"2025","unstructured":"Zheng Yu, Ziyi Guo, Yuhang Wu, Jiahao Yu, Meng Xu, Dongliang Mu, Yan Chen, and Xinyu Xing. 2025. Patchagent: A practical program repair agent mimicking human expertise. In Proceedings of the 34th USENIX Security Symposium (USENIX Security\u201925), Seattle, WA, USA."},{"key":"e_1_3_3_2_20_2","doi-asserted-by":"crossref","unstructured":"Xin Zhou Sicong Cao Xiaobing Sun and David Lo. 2025. Large language model for vulnerability detection and repair: Literature review and the road ahead. ACM Transactions on Software Engineering and Methodology 34 5 (2025) 1\u201331.","DOI":"10.1145\/3708522"},{"key":"e_1_3_3_2_21_2","unstructured":"Yuxuan Zhu Antony Kellermann Dylan Bowman Philip Li Akul Gupta Adarsh Danda Richard Fang Conner Jensen Eric Ihli Jason Benn et\u00a0al. 2025. CVE-Bench: A Benchmark for AI Agents\u2019 Ability to Exploit Real-World Web Application Vulnerabilities. arXiv preprint arXiv:https:\/\/arXiv.org\/abs\/2503.17332 (2025)."}],"event":{"name":"SVM '26: 4th International Workshop on Software Vulnerability Management","location":"Rio de Janeiro Brazil","acronym":"SVM '26","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering"]},"container-title":["Proceedings of the 2026 IEEE\/ACM 4th International Workshop on Software Vulnerability Management"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3786165.3788441","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,5,13]],"date-time":"2026-05-13T09:50:24Z","timestamp":1778665824000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3786165.3788441"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,4,12]]},"references-count":20,"alternative-id":["10.1145\/3786165.3788441","10.1145\/3786165"],"URL":"https:\/\/doi.org\/10.1145\/3786165.3788441","relation":{},"subject":[],"published":{"date-parts":[[2026,4,12]]},"assertion":[{"value":"2026-05-13","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}