Enhancing Code Quality with LLM in Software Static Analysis

doi:10.12142/ZTECOM.202601009

Abstract

Abstract:

In the modern era of ubiquitous and highly interconnected information technology, cybersecurity threats stemming from software code vulnerabilities have become increasingly severe, posing significant risks to the confidentiality, integrity, and availability of modern information systems. To enhance software code quality, enterprises often integrate static code analysis tools into Continuous Integration (CI) pipelines. However, the high rates of false positives and false negatives remain a challenge. The advent of large language models (LLMs), such as ChatGPT, presents a new opportunity to address these challenges. In this paper, we propose AI-SCDF, a framework that utilizes the custom-built Nebula-Coder AI model for detecting and fixing code security issues in real time during the developer’s personal build process. We construct a static code checking rule knowledge base through summarizing and classifying Common Weakness Enumeration (CWE) code security problems identified by security and quality assurance teams. The rule knowledge base is combined with CodeFuse-processed code contexts to serve as input for an AI code security detection microservice, which assists in identifying code quality and security issues. If any abnormalities are detected, they are addressed by an AI code security patching microservice, which alerts the developer and requests confirmation before committing the code into the repository. Experimental results show that our approach effectively improves code quality. We also develop a VSCode plugin for code alert detection and fix based on LLMs, which facilitates test shift-left and lowers the risk of software development.

Key words: software static analysis, LLM, CWE, knowledge base

Niu Zhi, Dong Luming. Enhancing Code Quality with LLM in Software Static Analysis[J]. ZTE Communications, 2026, 24(1): 65-71.

Figures/Tables 9

References 18

[1]	Coverity static analysis [EB/OL]. [2024-04-12].
[2]	Klocwork static analysis [EB/OL]. [2024-04-12].
[3]	Infer static analyzer [EB/OL]. [2024-04-12].
[4]	SonarQube [EB/OL]. [2024-04-12].
[5]	CodeQL website [EB/OL]. [2024-04-12].
[6]	Harer J A, Kim L Y, Russell R L, et al. Automated software vulnerability detection with machine learning [PP/OL]. ArXiv (2018-02-14)[2024-04-12].
[7]	Li Z, Zou D Q, Xu S H, et al. SySeVR: a framework for using deep learning to detect software vulnerabilities [J]. IEEE transactions on dependable and secure computing, 2022, 19(4): 2244–2258. DOI: 10.1109/tdsc.2021.3051525
[8]	Li Z, Zou D Q, Xu S H, et al. VulDeePecker: a deep learning-based system for vulnerability detection [C]//Proc. 2018 Network and Distributed System Security Symposium. Internet Society, 2018. DOI: 10.14722/ndss.2018.23158
[9]	Wang S, Liu T Y, Tan L. Automatically learning semantic features for defect prediction [C]//Proc. 38th International Conference on Software Engineering. ACM, 2016: 297–308. DOI: 10.1145/2884781.2884804
[10]	Li J, He P J, Zhu J M, et al. Software defect prediction via convolutional neural network [C]//Proc. IEEE International Conference on Software Quality, Reliability and Security (QRS). IEEE, 2017: 318–328. DOI: 10.1109/QRS.2017.42
[11]	GPT-3 [EB/OL]. [2024-04-12].
[12]	PaLM2 [EB/OL]. [2024-04-12].
[13]	Copilot [EB/OL]. [2024-04-12].
[14]	Llama [EB/OL]. [2024-04-12].
[15]	Berabi B, Gronskiy A, Raychev V, et al. DeepCode AI Fix: fixing security vulnerabilities with large language models [PP/OL]. ArXiv (2024-02-19)[2024-04-12].
[16]	Wadhwa N, Pradhan J, Sonwane A, et al.Frustrated with code quality issues? LLMs can help! [PP/OL]. ArXiv (2023-09-22)[2024-04-12].
[17]	Li H N, Hao Y, Zhai Y Z, et al. Enhancing static analysis for practical bug detection: an LLM-integrated approach [J]. Proc. ACM on programming languages, 2024, 8(OOPSLA1): 474–499. DOI: 10.1145/3649828
[18]	Juliet Java [EB/OL]. [2024-04-12].

CWE-ID	CWE Description	Testcase Path	Flaw Sum	Not Flaw Sum	TP	FN	TN	FP	Accuracy/%	Precision/%	Recall/%
CWE-23	Relative path traversal	Java/src/testcases/CWE23_Relative_Path_Traversal	444	276	378	66	202	74	80.6	83.6	85.1
CWE-78	OS command injection	Java/src/testcases/CWE78_OS_Command_Injection	444	276	363	81	171	105	74.2	77.6	81.8
CWE-89	SQL injection	Java/src/testcases/CWE89_SQL_Injection/s01	592	384	451	141	281	103	75	81.4	76.2
CWE-315	Plaintext storage in cookie	Java/src/testcases/CWE315_Plaintext_Storage_in_Cookie	37	24	37	0	23	1	98.4	97.4	100
CWE-325	Missing required cryptographic step	Java/src/testcases/CWE325_Missing_Required_Cryptographic_Step	34	0	31	3	0	0	91.2	100	91.2
CWE-190	Integer overflow	Java/src/testcases/CWE190_Integer_Overflow/s01	592	384	416	176	303	81	73.4	83.7	70.3
CWE-398	Poor code quality	Java/src/testcases/CWE398_Poor_Code_Quality	137	0	124	13	0	0	90.5	100	90.5
CWE-382	Use of system exit	Java/src/testcases/CWE382_Use_of_System_Exit	34	0	34	0	0	0	100	100	100
CWE-760	Predictable salt one way hash	Java/src/testcases/CWE760_Predictable_Salt_One_Way_Hash	17	0	17	0	0	0	100	100	100
CWE-369	Divide by zero	Java/src/testcases/CWE369_Divide_by_Zero/s01	592	384	434	158	276	108	72.3	80.1	73.3

CWE-ID	CWE Description	Testcase Path	Flaw Sum	Not Flaw Sum	TP	FN	TN	FP	Accuracy/%	Precision/%	Recall/%
CWE-23	Relative path traversal	Java/src/testcases/CWE23_Relative_Path_Traversal	444	276	378	66	202	74	80.6	83.6	85.1
CWE-78	OS command injection	Java/src/testcases/CWE78_OS_Command_Injection	444	276	363	81	171	105	74.2	77.6	81.8
CWE-89	SQL injection	Java/src/testcases/CWE89_SQL_Injection/s01	592	384	451	141	281	103	75	81.4	76.2
CWE-315	Plaintext storage in cookie	Java/src/testcases/CWE315_Plaintext_Storage_in_Cookie	37	24	37	0	23	1	98.4	97.4	100
CWE-325	Missing required cryptographic step	Java/src/testcases/CWE325_Missing_Required_Cryptographic_Step	34	0	31	3	0	0	91.2	100	91.2
CWE-190	Integer overflow	Java/src/testcases/CWE190_Integer_Overflow/s01	592	384	416	176	303	81	73.4	83.7	70.3
CWE-398	Poor code quality	Java/src/testcases/CWE398_Poor_Code_Quality	137	0	124	13	0	0	90.5	100	90.5
CWE-382	Use of system exit	Java/src/testcases/CWE382_Use_of_System_Exit	34	0	34	0	0	0	100	100	100
CWE-760	Predictable salt one way hash	Java/src/testcases/CWE760_Predictable_Salt_One_Way_Hash	17	0	17	0	0	0	100	100	100
CWE-369	Divide by zero	Java/src/testcases/CWE369_Divide_by_Zero/s01	592	384	434	158	276	108	72.3	80.1	73.3

CWE‑ID	CWE Description	Testcase Path	Confirm Flaw	Accept	Reject	Accepted Ratio
CWE-23	Relative path traversal	Java/src/testcases/CWE23_Relative_Path_Traversal	452	271	181	60.0%
CWE-78	OS command injection	Java/src/testcases/CWE78_OS_Command_Injection	468	243	225	51.9%
CWE-89	SQL injection	Java/src/testcases/CWE89_SQL_Injection/s01	554	316	238	57.0%
CWE-315	Plaintext storage in cookie	Java/src/testcases/CWE315_Plaintext_Storage_in_Cookie	38	38	0	100%
CWE-325	Missing required cryptographic step	Java/src/testcases/CWE325_Missing_Required_Cryptographic_Step	31	31	0	100%
CWE-190	Integer overflow	Java/src/testcases/CWE190_Integer_Overflow/s01	497	239	258	48.1%
CWE-398	Poor code quality	Java/src/testcases/CWE398_Poor_Code_Quality	124	120	4	96.7%
CWE-382	Use of system exit	Java/src/testcases/CWE382_Use_of_System_Exit	34	34	0	100%
CWE-760	Predictable salt one way hash	Java/src/testcases/CWE760_Predictable_Salt_One_Way_Hash	17	17	0	100%
CWE-369	Divide by zero	Java/src/testcases/CWE369_Divide_by_Zero/s01	542	233	219	43.0%

CWE‑ID	CWE Description	Testcase Path	Confirm Flaw	Accept	Reject	Accepted Ratio
CWE-23	Relative path traversal	Java/src/testcases/CWE23_Relative_Path_Traversal	452	271	181	60.0%
CWE-78	OS command injection	Java/src/testcases/CWE78_OS_Command_Injection	468	243	225	51.9%
CWE-89	SQL injection	Java/src/testcases/CWE89_SQL_Injection/s01	554	316	238	57.0%
CWE-315	Plaintext storage in cookie	Java/src/testcases/CWE315_Plaintext_Storage_in_Cookie	38	38	0	100%
CWE-325	Missing required cryptographic step	Java/src/testcases/CWE325_Missing_Required_Cryptographic_Step	31	31	0	100%
CWE-190	Integer overflow	Java/src/testcases/CWE190_Integer_Overflow/s01	497	239	258	48.1%
CWE-398	Poor code quality	Java/src/testcases/CWE398_Poor_Code_Quality	124	120	4	96.7%
CWE-382	Use of system exit	Java/src/testcases/CWE382_Use_of_System_Exit	34	34	0	100%
CWE-760	Predictable salt one way hash	Java/src/testcases/CWE760_Predictable_Salt_One_Way_Hash	17	17	0	100%
CWE-369	Divide by zero	Java/src/testcases/CWE369_Divide_by_Zero/s01	542	233	219	43.0%