avatar

Yalin Feng

We must know, we will know

Hi 👋, I’m Yalin Feng (pronounced Yah-lin Fung; 冯亚林), a master’s student from Nanjing University Software Institute, under the supervision of Prof. Minxue Pan. For more information, please visit the tag Experience above.

I am interested in AI4SE, SE4AI, AI Security, and also AI Safety. Especially, App Analysis, SecCodeGen

I look forward to pursuing more impactful contributions in both academia and industry.

Email: yalinfeng@smail.nju.edu.cn or yalinfeng@outlook.com

News

  • [Sep 2026] My first paper, PoliCond, was accepted to ASE 2025. This work identifies internal contradictions in privacy policy texts by combining LLMs and ontologies.

Weekly Read (Feb 09-15)

  1. SeCodePLT: A Unified Platform for Evaluating the Security of Code GenAI
  2. Asleep at the Keyboard? Assessing the Security of GitHub Copilot’s Code Contributions
  3. Vulnerability Detection with Code Language Models: How Far Are We?
  4. LLMs Cannot Reliably Identify and Reason About Security Vulnerabilities (Yet?): A Comprehensive Evaluation, Framework, and Benchmarks
  5. OpenRCA: Can Large Language Models Locate the Root Cause of Software Failures?
  6. CWE - CWE Top 25 Most Dangerous Software Weaknesses
  7. AACR-Bench: Evaluating Automatic Code Review with Holistic Repository-Level Context
  8. some papers about GUI

Statistics

  • 📄 Accepted: 1 (ASE 2025)
  • 🔍 Recently Reading: 9 papers on code LLMs & security
  • 🛠️ Open Source: 2 PR merged