Hugging Face's logo

ayshajavd
/
graphcodebert-vuln-classifier

Text Classification
Transformers
Safetensors
English
code
roberta
security
vulnerability-detection
code-analysis
multi-label-classification
graphcodebert
owasp
cwe
static-analysis
Eval Results (legacy)
text-embeddings-inference
Model card Files
xet
 Community
ayshajavd commited on
Commit
28b9920
·
verified ·
1 Parent(s): 868ca9d

Upload label_config.json with huggingface_hub

Browse files
Files changed (1) hide show
  1. label_config.json +145 -0
label_config.json ADDED
@@ -0,0 +1,145 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ {
2
+ "target_cwes": [
3
+ "safe",
4
+ "CWE-20",
5
+ "CWE-22",
6
+ "CWE-78",
7
+ "CWE-79",
8
+ "CWE-89",
9
+ "CWE-94",
10
+ "CWE-119",
11
+ "CWE-125",
12
+ "CWE-190",
13
+ "CWE-200",
14
+ "CWE-264",
15
+ "CWE-269",
16
+ "CWE-276",
17
+ "CWE-284",
18
+ "CWE-287",
19
+ "CWE-310",
20
+ "CWE-327",
21
+ "CWE-330",
22
+ "CWE-352",
23
+ "CWE-362",
24
+ "CWE-399",
25
+ "CWE-401",
26
+ "CWE-416",
27
+ "CWE-434",
28
+ "CWE-476",
29
+ "CWE-502",
30
+ "CWE-601",
31
+ "CWE-787",
32
+ "CWE-798",
33
+ "CWE-918"
34
+ ],
35
+ "cwe_names": {
36
+ "safe": "Safe Code",
37
+ "CWE-20": "Improper Input Validation",
38
+ "CWE-22": "Path Traversal",
39
+ "CWE-78": "OS Command Injection",
40
+ "CWE-79": "Cross-Site Scripting (XSS)",
41
+ "CWE-89": "SQL Injection",
42
+ "CWE-94": "Code Injection",
43
+ "CWE-119": "Buffer Overflow",
44
+ "CWE-125": "Out-of-bounds Read",
45
+ "CWE-190": "Integer Overflow",
46
+ "CWE-200": "Information Exposure",
47
+ "CWE-264": "Permissions/Privileges",
48
+ "CWE-269": "Improper Privilege Management",
49
+ "CWE-276": "Incorrect Permissions",
50
+ "CWE-284": "Improper Access Control",
51
+ "CWE-287": "Improper Authentication",
52
+ "CWE-310": "Cryptographic Issues",
53
+ "CWE-327": "Broken Crypto Algorithm",
54
+ "CWE-330": "Insufficient Randomness",
55
+ "CWE-352": "CSRF",
56
+ "CWE-362": "Race Condition",
57
+ "CWE-399": "Resource Management Errors",
58
+ "CWE-401": "Memory Leak",
59
+ "CWE-416": "Use After Free",
60
+ "CWE-434": "Unrestricted File Upload",
61
+ "CWE-476": "NULL Pointer Dereference",
62
+ "CWE-502": "Insecure Deserialization",
63
+ "CWE-601": "Open Redirect",
64
+ "CWE-787": "Out-of-bounds Write",
65
+ "CWE-798": "Hardcoded Credentials",
66
+ "CWE-918": "SSRF"
67
+ },
68
+ "num_labels": 31,
69
+ "cwe_to_owasp": {
70
+ "CWE-22": "A01",
71
+ "CWE-200": "A01",
72
+ "CWE-264": "A01",
73
+ "CWE-276": "A01",
74
+ "CWE-284": "A01",
75
+ "CWE-352": "A01",
76
+ "CWE-601": "A01",
77
+ "CWE-269": "A01",
78
+ "CWE-310": "A02",
79
+ "CWE-327": "A02",
80
+ "CWE-330": "A02",
81
+ "CWE-20": "A03",
82
+ "CWE-78": "A03",
83
+ "CWE-79": "A03",
84
+ "CWE-89": "A03",
85
+ "CWE-94": "A03",
86
+ "CWE-119": "A03",
87
+ "CWE-125": "A03",
88
+ "CWE-190": "A03",
89
+ "CWE-416": "A03",
90
+ "CWE-476": "A03",
91
+ "CWE-401": "A03",
92
+ "CWE-787": "A03",
93
+ "CWE-434": "A04",
94
+ "CWE-362": "A04",
95
+ "CWE-399": "A04",
96
+ "CWE-287": "A07",
97
+ "CWE-798": "A07",
98
+ "CWE-502": "A08",
99
+ "CWE-918": "A10"
100
+ },
101
+ "eval_metrics": {
102
+ "eval_loss": 0.18841227889060974,
103
+ "eval_macro_f1": 0.11565881718569303,
104
+ "eval_micro_f1": 0.7043137254901961,
105
+ "eval_weighted_f1": 0.8779236820172528,
106
+ "eval_macro_precision": 0.08711028841020804,
107
+ "eval_macro_recall": 0.2759197005459791,
108
+ "eval_f1_safe": 0.9464082098061574,
109
+ "eval_f1_CWE-20": 0.03125,
110
+ "eval_f1_CWE-22": 0.0,
111
+ "eval_f1_CWE-78": 0.0,
112
+ "eval_f1_CWE-79": 0.0,
113
+ "eval_f1_CWE-89": 0.6,
114
+ "eval_f1_CWE-94": 0.43478260869565216,
115
+ "eval_f1_CWE-119": 0.12903225806451613,
116
+ "eval_f1_CWE-125": 0.13333333333333333,
117
+ "eval_f1_CWE-190": 0.4,
118
+ "eval_f1_CWE-200": 0.0,
119
+ "eval_f1_CWE-264": 0.0,
120
+ "eval_f1_CWE-269": 0.0,
121
+ "eval_f1_CWE-276": 0.0,
122
+ "eval_f1_CWE-284": 0.0,
123
+ "eval_f1_CWE-287": 0.0,
124
+ "eval_f1_CWE-310": 0.0,
125
+ "eval_f1_CWE-327": 0.0,
126
+ "eval_f1_CWE-330": 0.0,
127
+ "eval_f1_CWE-352": 0.0,
128
+ "eval_f1_CWE-362": 0.0,
129
+ "eval_f1_CWE-399": 0.18181818181818182,
130
+ "eval_f1_CWE-401": 0.0,
131
+ "eval_f1_CWE-416": 0.0,
132
+ "eval_f1_CWE-434": 0.0,
133
+ "eval_f1_CWE-476": 0.21052631578947367,
134
+ "eval_f1_CWE-502": 0.2857142857142857,
135
+ "eval_f1_CWE-601": 0.0,
136
+ "eval_f1_CWE-787": 0.23255813953488372,
137
+ "eval_f1_CWE-798": 0.0,
138
+ "eval_f1_CWE-918": 0.0,
139
+ "eval_runtime": 29.0452,
140
+ "eval_samples_per_second": 17.215,
141
+ "eval_steps_per_second": 1.102,
142
+ "epoch": 2.0
143
+ },
144
+ "classification_report": " precision recall f1-score support\n\n safe 0.9742 0.9202 0.9464 451\n CWE-20 0.0169 0.2000 0.0312 5\n CWE-22 0.0000 0.0000 0.0000 0\n CWE-78 0.0000 0.0000 0.0000 0\n CWE-79 0.0000 0.0000 0.0000 1\n CWE-89 0.4286 1.0000 0.6000 6\n CWE-94 0.2778 1.0000 0.4348 5\n CWE-119 0.0723 0.6000 0.1290 10\n CWE-125 0.0741 0.6667 0.1333 3\n CWE-190 0.3333 0.5000 0.4000 4\n CWE-200 0.0000 0.0000 0.0000 1\n CWE-264 0.0000 0.0000 0.0000 0\n CWE-269 0.0000 0.0000 0.0000 0\n CWE-276 0.0000 0.0000 0.0000 0\n CWE-284 0.0000 0.0000 0.0000 0\n CWE-287 0.0000 0.0000 0.0000 0\n CWE-310 0.0000 0.0000 0.0000 0\n CWE-327 0.0000 0.0000 0.0000 0\n CWE-330 0.0000 0.0000 0.0000 0\n CWE-352 0.0000 0.0000 0.0000 0\n CWE-362 0.0000 0.0000 0.0000 0\n CWE-399 0.1000 1.0000 0.1818 3\n CWE-401 0.0000 0.0000 0.0000 0\n CWE-416 0.0000 0.0000 0.0000 1\n CWE-434 0.0000 0.0000 0.0000 0\n CWE-476 0.1250 0.6667 0.2105 3\n CWE-502 0.1667 1.0000 0.2857 2\n CWE-601 0.0000 0.0000 0.0000 0\n CWE-787 0.1316 1.0000 0.2326 5\n CWE-798 0.0000 0.0000 0.0000 0\n CWE-918 0.0000 0.0000 0.0000 0\n\n micro avg 0.5794 0.8980 0.7043 500\n macro avg 0.0871 0.2759 0.1157 500\nweighted avg 0.8947 0.8980 0.8779 500\n samples avg 0.7754 0.8980 0.8074 500\n"
145
+ }