OpenAI's HumanEval benchmark — 164 hand-written Python programming problems, each with a function signature, docstring, and unit tests — used to evaluate the functional correctness of code-generation models (the pass@k metric).
The repository includes the problem dataset and an execution harness that runs generated solutions against the hidden tests.
MIT licensed and tiny; a standard reference dataset for measuring code-synthesis capability.
! Security: Review · 8888/100 · grade Bscanned 14h ago
✓ no compromise signals3 risk-surface · 5/20 OWASP controls flagged
Compromise signals — malicious or tampered code (leaked secrets, backdoors, a dropped executable) — reduce the score, and known dependency CVEs carry a bounded penalty (they warrant review but never QUARANTINE — update the dependency to clear). Other dangerous-by-capability traits are risk surface, expected for some capabilities. Every finding is mapped to its OWASP control below.
Data card · high confidence (static)
jsonltxtlicense: detected
12 files
Findings mapped to the OWASP Top 10 for LLM Applications (2025) and the OWASP Machine Learning Security Top 10. Expand any flagged control for the exact findings — compromise reduces the score; expected/risk-surface do not.
OWASP Top 10 for LLM Applications
⚠LLM03Supply Chainhigh
Vulnerable/compromised dependencies, models or archives in the artifact.