This project implements a workflow for detecting format string vulnerabilities using Large Language Models (LLMs).
-
Sync Dependencies: Run
uv syncto synchronize project dependencies. -
Install Required Tools: Download the required tools and place them in the
tools/directory. For detailed instructions, please refer to tools/README.md. -
Configure LLM API Key: Set your LLM API key in the
.envfile. To use a different model, configure it in theconfig/directory.
To start the vulnerability detection process, run:
uv run fmtvul-workflow --target-file <path-to-target-codebase-archive>Replace <path-to-target-codebase-archive> with the path to your target codebase archive file.