How the Compiler Sees the Code. Graph Vulnerability Search

We’ll see how source code is transformed into graph-based representations to answer the question: "How does a compiler see code?" We’ll walk through frontend technologies — from AST and the graphs built on top of it to call graphs — and look at how they can be visualized.

As a case study, we’ll explore finding vulnerabilities caused by unsafe handling of tainted data. Along the way, we’ll see why traversing graphs isn’t just for LeetCode problems.

This session will be useful both for those who want to build their own code-processing tools and for anyone curious about what a compiler frontend is made of, how it sees code, and how it uses that internal representation.