Write a Blog >>
Mon 19 Jun 2017 15:00 - 15:30 at Vertex WS218 - Afternoon Chair(s): Christian Hammer

The growing prominence of Node.js and its package manager npm popularized the use of CommonJS modules, a specification that defines how to write modules in JavaScript, when there was no module construct in the language specification yet. With source code transformation tools such as Browserify, CommonJS modules can be compiled to a single JavaScript file and be run in the browser. This emphasizes the importance of program analysis tools that can detect security vulnerabilities in CommonJS module applications. Since the scripts produced by Browserify are not well suited for static analysis, I developed my own source code transformation tool and compare the two tools by computing the call graph accuracy for the produced scripts. The experimental results for 5 different Node.js packages show that scripts produced by my tool result in more precise call graphs and are therefore better suited for static analysis.

Mon 19 Jun
Times are displayed in time zone: (GMT+02:00) Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change

JSTools-2017-papers
14:00 - 15:30: JSTools 2017 - Afternoon at Vertex WS218
Chair(s): Christian HammerUniversity of Potsdam
JSTools-2017-papers14:00 - 14:30
Talk
John VilkUniversity of Massachusetts, Amherst
File Attached
JSTools-2017-papers14:30 - 15:00
Talk
Frank TipNortheastern University
JSTools-2017-papers15:00 - 15:30
Talk