I build automated tools using program analysis and LLMs to extract implicit specifications and detect bugs at scale.
❤️ Here hosts the tools I have built as part of my research. They form a progressive framework:
- APHP (USENIX Security 2023): I propose extracting specifications directly from known bug patches to support bug detection.
- APISpecGen (NDSS 2025): To move beyond patch-extracted specifications, I introduce specification propagation analysis that automatically generates new specifications from seed specifications.
- SpecAuditor (IEEE S&P 2026): Similarly, building on seed specifications, I leverage the strength of LLMs to perform semantic-level generalization and transfer of specifications.
- BugAuditor (USENIX Security 2026): To further expand the specification coverage, I focus on the abundant defensive code throughout codebases as a rich source of implicit specifications for bug detection.
I hope these tools inspire further research in this direction. Please feel free to contact me if you are interested in my work.



