AnyPoC: Universal Proof-of-Concept Test Generation for Scalable LLM-Based Bug Detection
Summary
AnyPoC is a multi-agent framework that addresses the challenge of LLM agents producing plausible but non-functional Proof-of-Concept (PoC) tests or hallucinated traces for bug reports. This system analyzes and fact-checks candidate bug reports, iteratively synthesizes and executes PoCs while collecting traces, and independently re-executes and scrutinizes PoCs to mitigate hallucination and reward hacking. AnyPoC also continuously extracts and evolves a PoC knowledge base for heterogeneous tasks. Applied to 12 critical software systems, including Firefox, Chromium, and OpenSSL, AnyPoC generated 1.3x more valid PoCs for true-positive reports and rejected 9.8x more false-positive reports compared to Claude Code and Codex. It has discovered 122 new bugs (105 confirmed, 86 fixed), with 45 PoCs adopted as official regression tests.
Key takeaway
For software engineering teams evaluating LLM-based bug detection tools, you should integrate automated PoC generation like AnyPoC to move beyond static reports. This framework significantly reduces manual validation effort by generating executable evidence and rejecting false positives, improving the scalability and reliability of your bug-finding pipelines. Consider adopting its multi-agent architecture and self-evolving knowledge base to handle diverse systems and bug types effectively.
Key insights
AnyPoC validates LLM-generated bug reports by autonomously creating and verifying executable Proof-of-Concept tests, significantly reducing false positives.
Principles
- LLM bug reports require executable validation.
- Multi-agent systems enhance validation reliability.
- Independent re-execution mitigates LLM hallucination.
Method
AnyPoC uses analyzer, generator, and checker agents. The analyzer fact-checks reports, the generator synthesizes and executes PoCs, and the checker independently re-executes and scrutinizes them, all while evolving a knowledge base.
In practice
- Integrate PoC generation for LLM bug detection.
- Use multi-agent validation to reduce false positives.
- Adopt self-evolving KBs for project-specific tooling.
Topics
- LLM-based Bug Detection
- Proof-of-Concept Generation
- Multi-Agent Systems
- Software Quality Assurance
- Automated Testing
- Knowledge Base Systems
Code references
Best for: Research Scientist, AI Scientist, Machine Learning Engineer, Software Engineer
Related on AIssential
Editorial summary, takeaway, and curation by AIssential. Original article published by cs.SE updates on arXiv.org.