Analyzing and Mitigating (with LLMs) the Security Misconfigurations of Helm Charts from Artifact Hub

In the corresponding scientific paper, we proposed a pipeline to mine Helm charts from Artifact Hub, a popular centralized repository, and analyze them using state-of-the-art open-source tools like Checkov and KICS. First, such a pipeline runs several chart analyzers and identifies the common and unique misconfigurations reported by each tool. Secondly, it uses LLMs to suggest mitigation for each misconfiguration. Finally, the chart refactoring previously generated is analyzed again by the same tools to see whether it satisfies the tool's policies.

In this dataset, you can find all the Helm chart templates downloaded from Artifact Hub (available in June 2024), all the outputs of the tools analyzing such templates, the CSV result files with all LLM queries and answers, and the snippets selected for the manual analysis.