๐ AI-Powered Code Security Risk Analyzer v2
Detect OWASP Top 10 & CWE vulnerabilities with calibrated confidence + per-class thresholds
Paste code in Python, JavaScript, Java, C, C++, PHP, or Go.
Models: GraphCodeBERT (detection, Macro F1=0.476) + CodeT5+ (fixes, BLEU=81.0) | Dataset: 175K samples
v2 Improvements: Per-class threshold optimization | Temperature-calibrated probabilities | Asymmetric Loss training | GraphCodeBERT-base (125M params) | CodeT5+ 220M CWE-aware fixer
Example Code Snippets
30 CWE Vulnerability Classes โ OWASP Top 10
| OWASP Category | CWEs |
|---|---|
| A01: Broken Access Control | CWE-22, 200, 264, 269, 276, 284, 352, 601 |
| A02: Cryptographic Failures | CWE-310, 327, 330 |
| A03: Injection | CWE-20, 78, 79, 89, 94, 119, 125, 190, 401, 416, 476, 787 |
| A04: Insecure Design | CWE-362, 399, 434 |
| A07: Auth Failures | CWE-287, 798 |
| A08: Integrity Failures | CWE-502 |
| A10: SSRF | CWE-918 |