Chenghang Shi (施程航)

Chenghang Shi (施程航)

Institute of Computing Technology, Chinese Academy of Sciences

Beijing
Email: chenghangshi [AT] gmail [DOT] com
[GitHub] [Blog] [Twitter]

Short bio | Education | Internship | Awards |

Short Bio

I am a Ph.D. candidate at the Institute of Computing Technology, Chinese Academy of Sciences, under the supervision of Prof. Lian Li. Prior to this, I obtained my Bachelor's degree at Tongji University.

I am broadly interested in programming languages and program analysis, encompassing both fundamental problems—such as pointer analysis and graph-reachability-based techniques (e.g., IFDS and CFL-reachability)—and practical applications like vulnerability detection. I am also interested in leveraging large language models (LLMs) for classic PL and SE tasks.

:-) Feel free to drop me an email if you want to talk.

Education

03/2024 - Now Ph.D. candidate at the Institute of Computing Technology, Chinese Academy of Sciences
09/2021 - 03/2024 Master student at the Institute of Computing Technology, Chinese Academy of Sciences
09/2016 - 07/2021 Bachelor student at the School of Software Engineering, Tongji University

Publications

USENIX Security'25: ZIPPER: Static Taint Analysis for PHP Applications with Precision and Efficiency
Xinyi Wang, Yeting Li, Jie Lu, Shizhe Cui, Chenghang Shi, Qin Mai, Yunpei Zhang, Yang Xiao, Feng Li, Wei Huo
The 34th USENIX Security Symposium
FSE'25: VulPA: Detecting Semantically Recurring Vulnerabilities with Multi-Object Typestate Analysis
Liqing Cao, Haofeng Li, Chenghang Shi, Jie Lu, Haining Meng, Lian Li and Jingling Xue
The ACM International Conference on the Foundations of Software Engineering
ICSE'25: Module-Aware Context Sensitive Pointer Analysis
Haofeng Li, Chenghang Shi, Jie Lu, Lian Li, Zixuan Zhao
The 47th IEEE/ACM International Conference on Software Engineering
ISSTA'24: Better Not Together: Staged Solving for Context-Free Language Reachability [pdf]
Chenghang Shi, Haofeng Li, Jie Lu, Lian Li
The 33rd ACM SIGSOFT International Symposium on Software Testing and Analysis
TSE'24: PEARL: A Multi-Derivation Approach to Efficient CFL-Reachability Solving [pdf]
Chenghang Shi, Haofeng Li, Yulei Sui, Jie Lu, Lian Li, Jingling Xue.
Transactions on Software Engineering, 2024
OOPSLA'24: Boosting the Performance of Alias-Aware IFDS Analysis with CFL-based Environment Transformers [pdf]
Haofeng Li, Chenghang Shi, Jie Lu, Lian Li, Jingling Xue
The 39th ACM SIGPLAN Conference on Objected Oriented Programming, Systems, Languages, and Applications
CCS'24: Detecting Broken Object-Level Authorization Vulnerabilities in Database-Backed Applications [pdf]
Yongheng Huang, Chenghang Shi, Jie Lu, Haofeng Li, Haining Meng, Lian Li
The 31th ACM SIGSAC Conference on Computer and Communications Security
ICECCS'24: AutoWeb: Automatically Inferring Web Framework Semantics via Configuration Mutation [pdf]
Haining Meng, Haofeng Li, Jie Lu, Chenghang Shi, Liqing Cao, Lian Li, Lin Gao
The 28th International Conference on Engineering of Complex Computer Systems
ASE'23: Two Birds with One Stone: Multi-Derivation for Fast Context-Free Language Reachability Analysis [pdf] [slides]
Chenghang Shi, Haofeng Li, Yulei Sui, Jie Lu, Lian Li, Jingling Xue
The 38th IEEE/ACM International Conference on Automated Software Engineering

Internship

05/2022 - 12/2022 Research Intern at Ant Group

Awards

National Scholarship. 2024
Outstanding Graduates in Tongji University. 2021
First Class Scholarship in Tongji University. 2019, 2020

Service

Sub-reviewer: ISSTA'24, ASE'23

Part of the page is generated by jemdoc.

Last Updated: .