Analyzing and Mitigating (with LLMs) the Security Misconfigurations of Helm Charts from Artifact Hub

From MaRDI portal
(Redirected from Dataset:6717907)



DOI10.5281/zenodo.14888024Zenodo14888024MaRDI QIDQ6717907FDOQ6717907

Dataset published at Zenodo repository.

Fabio Massacci, Francesco Minna, Katja Tuma

Publication date: 18 February 2025

Copyright license: Creative Commons Attribution 4.0 International



Description

In the corresponding scientific paper, we proposed a pipeline to mine Helm charts from Artifact Hub, a popular centralized repository, and analyze them using state-of-the-art open-source tools like Checkov and KICS. First, such a pipeline runs several chart analyzers and identifies the common and unique misconfigurations reported by each tool. Secondly, it uses LLMs to suggest mitigation for each misconfiguration. Finally, the chart refactoring previously generated is analyzed again by the same tools to see whether it satisfies the tool's policies. In this dataset, you can find all the Helm chart templates downloaded from Artifact Hub (available in June 2024), all the outputs of the tools analyzing such templates, the CSV result files with all LLM queries and answers, and the snippets selected for the manual analysis.







This page was built for dataset: Analyzing and Mitigating (with LLMs) the Security Misconfigurations of Helm Charts from Artifact Hub

Retrieved from "https://portal.mardi4nfdi.de/w/index.php?title=Analyzing_and_Mitigating_(with_LLMs)_the_Security_Misconfigurations_of_Helm_Charts_from_Artifact_Hub&oldid=54677132"
Powered by MediaWiki