Go Source Code Vulnerability Detection Method Based on Graph Neural Network

Go Source Code Vulnerability Detection Method Based on Graph Neural Network

With the widespread application of the Go language, the demand for vulnerability detection in Go programs is increasing. Existing detection models and methods have deficiencies in extracting source code features of Go programs and mainly focus on detecting concurrency vulnerabilities. In response to...

Full description

Saved in:
Bibliographic Details
Main Authors: Lisha Yuan, Yong Fang, Qiang Zhang, Zhonglin Liu, Yijia Xu
Format: Article
Language:English
Published: MDPI AG 2025-06-01
Series:Applied Sciences
Subjects:
golang
static vulnerability detection
program pruning
graph neural network
attention mechanism
Online Access:https://www.mdpi.com/2076-3417/15/12/6524
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:With the widespread application of the Go language, the demand for vulnerability detection in Go programs is increasing. Existing detection models and methods have deficiencies in extracting source code features of Go programs and mainly focus on detecting concurrency vulnerabilities. In response to these issues, we propose a Go program vulnerability detection method based on a graph neural network (GNN). The core of this approach is to utilize GraphSAGE to extract the global structure and deep semantic information of each concurrent function, maximizing the learning of concurrency vulnerability features. To capture contextual information of fine-grained code fragments in source code, we employ taint analysis to extract taint propagation chains and use a Transformer model with a multi-head attention mechanism, based on lexical analysis, to extract fine-grained vulnerability features. We integrate graph-level and token-level features to maximize the detection of various complex types of vulnerabilities in Go source code. Experimental results on a real-world vulnerability dataset demonstrate that our model outperforms existing detection methods and tools, achieving an F1-score of 91.35%. Furthermore, ablation experiments confirm that the proposed feature fusion method effectively extracts deep vulnerability features.
ISSN:2076-3417

Similar Items