Empirical Analysis of Vulnerabilities Life Cycle in Golang Ecosystem.

This repository is provide the scripts and technical documentation of Empirical Analysis of Vulnerabilities Life Cycle in Golang Ecosystem.

note: These files' functions should be executed sequentially.

Run index_crawl.py to gather Golang Index information.
Utilize vulnerability_mongodb.py to create the vulnerability database.
Execute generate_safe_range.py to determine the safe range of vulnerabilities.
Fetch the dependency relation from the Bigquery Database.
Run generate_vul_dependents.py to identify repositories for analysis.
Use download_libs_vul.py to download vulnerable repositories.
Utilize get_exactly_patch_time.py to pinpoint the exact fix time for impacted modules.
Run research_questions.py to analyze the generated data, covering analysis for rq1-rq4. (Note: In research_questions.py, each RQ and Figure introduce functions to retrieve corresponding data.)

Name		Name	Last commit message	Last commit date
Latest commit History 24 Commits
README.md		README.md
download_libs_vul.py		download_libs_vul.py
download_repos.py		download_repos.py
generate_safe_range.py		generate_safe_range.py
generate_vul_dependents.py		generate_vul_dependents.py
get_exactly_patch_time.py		get_exactly_patch_time.py
index_crawl.py		index_crawl.py
lib_name_address.txt		lib_name_address.txt
research_questions.py		research_questions.py
vulnerabilities_mongodb.py		vulnerabilities_mongodb.py

Provide feedback