A Ph.D. candidate at the Software Engineering Laboratory, Fudan University (@FudanSELab), working on Program Analysis and AI for Software Engineering.

• Program Analysis — static / dynamic analysis, mainly on Java (Soot, Joern, CodeQL).
• Vulnerability Detection — finding and exploiting real-world bugs in third-party dependencies.
• LLM-based SE — building intelligent agents that understand and reason about code.

I'm interested in bridging classical program analysis with modern LLM capabilities — treating them as complementary tools rather than competitors.

Stack  

Keywords   Static Analysis · Vulnerability Detection · LLM Agents · Code Understanding · Software Security

• ASE 2024 (CCF-A) · Magneto: A Step-Wise Approach to Exploit Vulnerabilities in Dependent Libraries via LLM-Empowered Directed Fuzzing · 39th IEEE/ACM International Conference on Automated Software Engineering  

For a complete list, see my Google Scholar profile.