Chronos: Time-Aware Zero-Shot Identification of Libraries from Vulnerability Reports
A reproduction of Chronos The paper’s title is “Chronos Time-Aware Zero-Shot Identification of Libraries from Vulnerability Reports”. The original authors of the paper are Lyu Yunbo and Le-Cong, Thanh and Kang, Hong Jin and Widyasari, Ratnadira and Zhao, Zhipeng and Le, Xuan-Bach D and Li, Ming and Lo, David. The reproduction authors are the same as the paper author. The contact information is yunbolyu@smu.edu.sg. The URL to the original paper is https://arxiv.org/abs/2301.03944. No subsequent papers report the reproduction. The reproduction tool, Chronos, can identify libraries from vulnerability reports with time-aware and zero-shot learning, i.e., input a text that reports the vulnerability. Chronos can return potential libraries with high accuracy. Some libraries affected by the vulnerabilities are not mentioned in the NVD entry, which is a potential pitfall. Using the tool Chronos, researchers or developers can better find the libraries affected by the vulnerabilities. You can find the reproduction at https://github.com/soarsmu/Chronos. The technology skills assumed by the reviewer evaluating the artifact should be proficiency in python and shell. There is no specific need for Operating Systems.