Invention Grant
- Patent Title: False-positives invalidation and static security scans without scanning based on regular scan history in pull requests
-
Application No.: US17301767Application Date: 2021-04-14
-
Publication No.: US12001565B2Publication Date: 2024-06-04
- Inventor: Marcin Filip , Michal Bodziony , Marcin Luczynski , Tomasz Zatorski , Wojciech Mis , Bartosz Tomasik
- Applicant: International Business Machines Corporation
- Applicant Address: US NY Armonk
- Assignee: International Business Machines Corporation
- Current Assignee: International Business Machines Corporation
- Current Assignee Address: US NY Armonk
- Agent Stosch Sabo
- Main IPC: G06F21/57
- IPC: G06F21/57
Abstract:
Providing an automatic mechanism of invalidating false-positive indications of certain identified portions of source code to reduce the number of errors in a security report. Certain embodiments of the present invention utilize static security scanning as a mechanism for automatically determining which portions of the identified source code contain potential vulnerabilities, and whether these identified portions of the source code are correctly or incorrectly identified with a false-positive indication.
Public/Granted literature
Information query
