In [1]:
import pickle as pkl
import pandas as pd
import numpy as np
import matplotlib.pyplot as plt
import matplotlib.dates as mdates
import json
import re
import datetime
import os

In [2]:
DATA_FOLDER = "../../data"

### Import

In [3]:
def load_data(dir_path=DATA_FOLDER):
    """Load data from pickle files

    Keyword arguments:
    file_path -- path to pickle files
    Return: dicts for each file
    """

    with open(dir_path + "/output_data_features_class", "rb") as f:
        features_class = pkl.load(f)
    with open(dir_path + "/output_data_features_num", "rb") as f:
        features_num = pkl.load(f)
    with open(dir_path + "/output_data_votes_class", "rb") as f:
        votes_class = pkl.load(f)
    with open(dir_path + "/output_data_votes_num", "rb") as f:
        votes_num = pkl.load(f)

    return features_class, features_num, votes_class, votes_num


In [4]:
fc, fn, vc, vn = load_data()
with open(f"{DATA_FOLDER}/kev.json", "r") as f:
    kev = json.load(f)['vulnerabilities']
kev_set = {i["cveID"] for i in kev}
with open(f"{DATA_FOLDER}/users.json", "r") as f:
  users = json.load(f)

df_interns = pd.read_csv(f"{DATA_FOLDER}/interns.csv", names=["Nome", "email",  "team", "project"])
df_mentors = pd.read_csv(f"{DATA_FOLDER}/mentors.csv", names=["Nome", "email",  "team"])
df_team = pd.read_csv(f"{DATA_FOLDER}/crivo_team.csv", names=["Nome", "email",  "team", "project"])
df_interns["role"] = "intern"
df_mentors["role"] = "mentor"

df_interns = df_interns[["Nome", "email", "role"]]
df_mentors = df_mentors[["Nome", "email", "role"]]
df_users = pd.concat([df_interns, df_mentors, df_team], axis=0).copy().reset_index(drop=True)
df_users = df_users.astype({"Nome": "string", "email": "string", "role": "string"})

cat_users = users["crivo"]
num_users = users["crivo-num"]
dev_users = users["crivo-dev"]

In [5]:
tc = pd.DataFrame(fc)
tn = pd.DataFrame(fn)

In [6]:
tc.sort_values(by="id").reset_index(drop=True)

Unnamed: 0,id,title,date,description,severity,vuln_id_from_tool,mitigation,epss_score,epss_percentile,cve
0,1,Apache HTTP Server End of Life (EOL) Detection...,2025-04-27,**Name**: Apache HTTP Server End of Life (EOL)...,High,1.3.6.1.4.1.25623.1.0.108135,VendorFix\n\nUpdate the Apache HTTP Server ver...,,,
1,2,"PHP < 5.3.13, 5.4.x < 5.4.3 Multiple Vulnerabi...",2025-04-27,"**Name**: PHP < 5.3.13, 5.4.x < 5.4.3 Multiple...",High,1.3.6.1.4.1.25623.1.0.103482,"VendorFix\n\nUpdate to version 5.3.13, 5.4.3 o...",0.94386,0.9996,CVE-2012-1823
2,3,Multiple Devices Information Disclosure / Path...,2025-04-27,**Name**: Multiple Devices Information Disclos...,High,1.3.6.1.4.1.25623.1.0.114316,VendorFix\n\n- According to 3rdparty sources A...,0.92899,0.99747,CVE-2017-8229
3,4,Embedthis GoAhead 2.5.0 HTTP Header Injection ...,2025-04-27,**Name**: Embedthis GoAhead 2.5.0 HTTP Header ...,High,1.3.6.1.4.1.25623.1.0.114133,WillNotFix\n\nNo known solution was made avail...,0.15521,0.9425,CVE-2019-16645
4,5,Microsoft Windows SMB/NETBIOS NULL Session Aut...,2025-04-27,**Name**: Microsoft Windows SMB/NETBIOS NULL S...,High,1.3.6.1.4.1.25623.1.0.801991,Workaround\n\nA workaround is to:\n\n - Disab...,0.08661,0.91939,CVE-1999-0519
5,6,SSL/TLS: Report Vulnerable Cipher Suites for H...,2025-04-27,**Name**: SSL/TLS: Report Vulnerable Cipher Su...,High,1.3.6.1.4.1.25623.1.0.108031,Mitigation\n\nThe configuration of this servic...,0.40603,0.97143,CVE-2016-2183
6,7,ISC BIND Security Bypass Vulnerability - Activ...,2025-04-27,**Name**: ISC BIND Security Bypass Vulnerabili...,Medium,1.3.6.1.4.1.25623.1.0.106953,"VendorFix\n\nUpdate to version 9.9.10-P2, 9.10...",0.28672,0.96207,CVE-2017-3143
7,8,SSL/TLS: OpenSSL 'CVE-2016-2107' Padding Oracl...,2025-04-27,**Name**: SSL/TLS: OpenSSL 'CVE-2016-2107' Pad...,Medium,1.3.6.1.4.1.25623.1.0.107141,VendorFix\n\nOpenSSL 1.0.2 users should upgrad...,0.82039,0.99137,CVE-2016-2107
8,9,Check if Mailserver Answer to VRFY and EXPN re...,2025-04-27,**Name**: Check if Mailserver answer to VRFY a...,Medium,1.3.6.1.4.1.25623.1.0.100072,Workaround\n\nDisable VRFY and/or EXPN on your...,,,
9,10,"Geoserver 2.5.x < 2.5.5.1, 2.6.x < 2.6.4, 2.7....",2025-04-27,"**Name**: Geoserver 2.5.x < 2.5.5.1, 2.6.x < 2...",Medium,1.3.6.1.4.1.25623.1.0.105320,VendorFix\n\nUpdate to version 2.7.2 or later.,,,


In [7]:
tn.sort_values(by="id").reset_index(drop=True)

Unnamed: 0,id,title,date,description,severity,vuln_id_from_tool,mitigation,epss_score,epss_percentile,cve
0,1,Check for Discard Service (TCP)_153.94.175.79_...,2025-04-27,**Name**: Check for discard Service (TCP)\n**H...,High,1.3.6.1.4.1.25623.1.0.11367,"Mitigation\n\n- Under Unix systems, comment ou...",0.00467,0.63176,CVE-1999-0636
1,2,"GitLab < 13.8.8, 13.9.x < 13.9.6, 13.10.x < 13...",2025-04-27,"**Name**: GitLab < 13.8.8, 13.9.x < 13.9.6, 13...",High,1.3.6.1.4.1.25623.1.0.147118,"VendorFix\n\nUpdate to version 13.8.8, 13.9.6,...",0.94479,0.99997,CVE-2021-22205
2,3,D-Link DNS/DNR Devices Multiple Vulnerabilitie...,2025-04-27,**Name**: D-Link DNS/DNR Devices Multiple Vuln...,High,1.3.6.1.4.1.25623.1.0.152068,WillNotFix\n\nNo solution was made available b...,0.94402,0.99969,CVE-2024-3273
3,4,VNC Brute Force Login_153.94.225.237_5901/tcp,2025-04-27,**Name**: VNC Brute Force Login\n**Host**: 153...,High,1.3.6.1.4.1.25623.1.0.106056,Mitigation\n\nChange the password to something...,,,
4,5,Report Default Community Names of the SNMP Age...,2025-04-27,**Name**: Report default community names of th...,High,1.3.6.1.4.1.25623.1.0.10264,VendorFix\n\nDetermine if the detected communi...,0.92333,0.997,CVE-1999-0517
5,6,Libupnp Unhandled POST Write Vulnerability_153...,2025-04-27,**Name**: libupnp Unhandled POST Write Vulnera...,High,1.3.6.1.4.1.25623.1.0.106155,VendorFix\n\nUpgrade to version 1.6.21 or later.,0.56733,0.97948,CVE-2016-6255
6,7,Twonky Server 7.0.11 - 8.5 Multiple Vulnerabil...,2025-04-27,**Name**: Twonky Server 7.0.11 - 8.5 Multiple ...,High,1.3.6.1.4.1.25623.1.0.108436,VendorFix\n\nUpdate to version 8.5.1 or later....,0.50457,0.97651,CVE-2018-7171
7,8,SSL/TLS: Report Weak Cipher Suites_153.94.205....,2025-04-27,**Name**: SSL/TLS: Report Weak Cipher Suites\n...,Medium,1.3.6.1.4.1.25623.1.0.103440,Mitigation\n\nThe configuration of this servic...,0.94027,0.9988,CVE-2015-4000
8,9,HTTP Debugging Methods (TRACE/TRACK) Enabled_1...,2025-04-27,**Name**: HTTP Debugging Methods (TRACE/TRACK)...,Medium,1.3.6.1.4.1.25623.1.0.11213,Mitigation\n\nDisable the TRACE and TRACK meth...,0.82689,0.99168,CVE-2003-1567
9,10,SSL/TLS: Certificate Expired_153.94.198.99_631...,2025-04-27,**Name**: SSL/TLS: Certificate Expired\n**Host...,Medium,1.3.6.1.4.1.25623.1.0.103955,Mitigation\n\nReplace the SSL/TLS certificate ...,,,


In [8]:
df_cred_cat = pd.read_csv(f"{DATA_FOLDER}/cred_cat.csv", names=["Nome", "email", "pass"], skipinitialspace=True)[["email", "pass"]]
df_cred_cat = df_cred_cat.astype({"email": "string", "pass": "string"})

df_cred_num = pd.read_csv(f"{DATA_FOLDER}/cred_num.csv", names=["Nome", "email", "pass"], skipinitialspace=True)[["email", "pass"]]
df_cred_num = df_cred_num.astype({"email": "string", "pass": "string"})

df_cred_cat["email"].head(40)

0                 ztgustavo2@gmail.com
1         nataliabatista3001@gmail.com
2               paula.braz86@gmail.com
3               alonsosatos4@gmail.com
4                  fellipe@maoe.com.br
5                  dr.cattai@gmail.com
6                  maxvizmel@gmail.com
7               avilarezende@gmail.com
8           fausto.almeida.f@gmail.com
9             jaquesilva1585@gmail.com
10         Eddymartinsdias@hotmail.com
11                  guilherme@ufrgs.br
12          mauriciojunior.f@gmail.com
13    danyel.mendes@ifsertao-pe.edu.br
14               ericdlfraga@gmail.com
15                   famatte@gmail.com
16              jeancmmiguel@gmail.com
17        cesar.loureiro@pop-rs.rnp.br
18              flaveustesta@gmail.com
19           renanfreitasa@hotmail.com
Name: email, dtype: string

In [9]:
cat_users = users["crivo"]
cat_users = {str(v): k for k, v in cat_users.items()}
cat_users_df = pd.DataFrame(list(zip(cat_users.keys(), cat_users.values())), columns=["email", "user_id"]).convert_dtypes()
cat_users_df = cat_users_df.merge(df_users, on="email", how="left")
cat_users_df = cat_users_df.merge(df_cred_cat, on="email", how="left")
cat_users_df = cat_users_df[["user_id", "Nome", "email", "pass", "role"]]
cat_users_df = cat_users_df.astype({"user_id": "int64", "email": "string", "role": "string"})
cat_users_df[["user_id", "Nome", "email", "role"]].head(40)

Unnamed: 0,user_id,Nome,email,role
0,20,Eddy Martins,Eddymartinsdias@hotmail.com,mentor
1,1,Admin,admin@defectdojo.local,
2,13,Alonso Dos Santos Silva,alonsosatos4@gmail.com,intern
3,17,Rodrigo de Ávila Sampaio Rezende,avilarezende@gmail.com,mentor
4,2,Bernnardo Seraphim,bernnardosbo@gmail.com,
5,27,César Augusto Hass Loureiro,cesar.loureiro@pop-rs.rnp.br,mentor
6,23,Danyel Mendes Nogueira Ramos,danyel.mendes@ifsertao-pe.edu.br,mentor
7,15,Vitor Roberto Cattai,dr.cattai@gmail.com,intern
8,24,Eric de Luna Fraga,ericdlfraga@gmail.com,mentor
9,25,Fernando Pompeo Amatte,famatte@gmail.com,mentor


In [10]:
num_users = users["crivo-num"]
num_users = {str(v): k for k, v in num_users.items()}
num_users_df = pd.DataFrame(list(zip(num_users.keys(), num_users.values())), columns=["email", "user_id"]).convert_dtypes()
num_users_df = num_users_df.merge(df_users, on="email", how="left")
num_users_df = num_users_df.merge(df_cred_num, on="email", how="left")
num_users_df = num_users_df[["user_id", "Nome", "email", "role", "pass" ]]
num_users_df = num_users_df.astype({"user_id": "int64", "Nome": "string", "email": "string", "role": "string"})
num_users_df[["user_id", "Nome", "email", "role"]].head(40)

Unnamed: 0,user_id,Nome,email,role
0,1,Admin,admin@defectdojo.local,
1,23,Alessandro,alessandro.fonseca@ebserh.gov.br,mentor
2,26,Alexandre Mundim de Oliveira,alexandremundimdeoliveira@gmail.com,mentor
3,19,André Luiz de Souza Freitas,andre.freitas@unir.br,mentor
4,2,Bernnardo Seraphim,bernnardosbo@gmail.com,
5,27,Daniel Rodrigues Pereira,danielrodriguesp@gmail.com,mentor
6,24,Delson Antonio do Rosario Filho,delsonrf@gmail.com,mentor
7,16,Marcelo Goulart Aguiar Marques,electr.core13@protonmail.com,intern
8,21,Emanuel Bezerra Rodrigues,emanuel@dc.ufc.br,mentor
9,3,Francisco Aragão,franciscoaragao785@gmail.com,


### Exploratory Data Analysis

In [11]:
def get_cvelist(text):
    pattern = r"^\*\*CVEs\*\*: (.*)$"
    match = re.search(pattern, text, re.MULTILINE)
    if match:
        cve_list = match.group(1).split(', ')
        if cve_list == ['']:
            return None
        else:
            return list(set(cve_list))
    else:
        return None

In [12]:
IN_KEV = 1
HAS_CVE = 2
NO_CVE = 3

def process_finding_df(iter):
  df = pd.DataFrame(iter)
  df = df[["id","title","description"]]
  df["id"] = df["id"] - 1
  df["cves"] = df["description"].apply(get_cvelist)
  df["class"] = df["cves"].apply(lambda cve_list: NO_CVE if not cve_list else IN_KEV if any(cve in kev_set for cve in cve_list) else HAS_CVE)
  return df

df_fn = process_finding_df(fn)
df_fc = process_finding_df(fc)

In [13]:
df_fn.head(2)

Unnamed: 0,id,title,description,cves,class
0,20,'/.//WEB-INF/' Information Disclosure Vulnerab...,**Name**: '/.//WEB-INF/' Information Disclosur...,[CVE-2021-41381],2
1,0,Check for Discard Service (TCP)_153.94.175.79_...,**Name**: Check for discard Service (TCP)\n**H...,[CVE-1999-0636],2


In [14]:
df_fc.head(2)

Unnamed: 0,id,title,description,cves,class
0,20,'/.//WEB-INF/' Information Disclosure Vulnerab...,**Name**: '/.//WEB-INF/' Information Disclosur...,[CVE-2021-41381],2
1,0,Apache HTTP Server End of Life (EOL) Detection...,**Name**: Apache HTTP Server End of Life (EOL)...,,3


In [15]:
# NUMERIC VOTES
df_vn = pd.DataFrame(vn)

# Converting column to numeric
df_vn["vote"] = pd.to_numeric(df_vn["vote_num"])

# Renaming ambiguous columns
df_vn = df_vn.rename(columns={"id": "finding_id"})

# 0-based indexing for findings
df_vn["finding_id"] = df_vn["finding_id"] - 1

# Adding finding class between IN_KEV, HAS_CVE & NO_CVE
df_vn["finding_class"] = df_vn.join(df_fn.set_index("id"), on="finding_id")["class"]

# Converting timestamp to pandas datetime
df_vn["timestamp"] = pd.to_datetime(df_vn["timestamp"], format="ISO8601")

# Setting up avg related metrics
df_vn["avg"] = df_vn["finding_id"].map(df_vn.groupby("finding_id").agg({"vote": "mean"})["vote"])
df_vn["avg_error"] = abs(df_vn["vote"] - df_vn["avg"])

# Setting up title variable
df_vn["finding_title"] = pd.merge(df_vn, df_fn[["id", "title"]], left_on="finding_id", right_on="id")['title']


# Setting up variance related metrics
df_vn["var"] = df_vn["finding_id"].map(df_vn.groupby("finding_id").agg({"vote": "var"})["vote"])
df_vn["var_percentile"] = df_vn["finding_id"].map(df_vn.groupby("finding_id").agg({"vote": "var"})["vote"].rank(pct=True))

df_vn.head(10)

Unnamed: 0,finding_id,user_id,vote_num,timestamp,vote,finding_class,avg,avg_error,finding_title,var,var_percentile
0,0,5,10,2025-04-27 21:48:59.950631+00:00,10,2,5.714286,4.285714,Check for Discard Service (TCP)_153.94.175.79_...,7.904762,1.0
1,0,10,6,2025-04-29 22:05:19.193009+00:00,6,2,5.714286,0.285714,Check for Discard Service (TCP)_153.94.175.79_...,7.904762,1.0
2,0,12,1,2025-04-28 17:49:12.736380+00:00,1,2,5.714286,4.714286,Check for Discard Service (TCP)_153.94.175.79_...,7.904762,1.0
3,0,13,4,2025-04-29 00:13:26.237885+00:00,4,2,5.714286,1.714286,Check for Discard Service (TCP)_153.94.175.79_...,7.904762,1.0
4,0,14,5,2025-04-28 19:39:14.983384+00:00,5,2,5.714286,0.714286,Check for Discard Service (TCP)_153.94.175.79_...,7.904762,1.0
5,0,16,7,2025-04-28 18:38:42.845653+00:00,7,2,5.714286,1.285714,Check for Discard Service (TCP)_153.94.175.79_...,7.904762,1.0
6,0,18,7,2025-04-29 03:36:28.852695+00:00,7,2,5.714286,1.285714,Check for Discard Service (TCP)_153.94.175.79_...,7.904762,1.0
7,1,5,10,2025-04-27 21:49:01.751120+00:00,10,1,9.714286,0.285714,"GitLab < 13.8.8, 13.9.x < 13.9.6, 13.10.x < 13...",0.238095,0.032258
8,1,10,9,2025-04-29 22:39:58.711813+00:00,9,1,9.714286,0.714286,"GitLab < 13.8.8, 13.9.x < 13.9.6, 13.10.x < 13...",0.238095,0.032258
9,1,12,10,2025-04-28 18:02:59.186738+00:00,10,1,9.714286,0.285714,"GitLab < 13.8.8, 13.9.x < 13.9.6, 13.10.x < 13...",0.238095,0.032258


In [16]:
# CLASS VOTES
df_vc = pd.DataFrame(vc)

class_map = {
    "Mild": 1,
    "Moderate": 2,
    "Severe": 3,
    "Critical": 4,
}

# Converting classes to numeric
# class_map = {class_name: index+1 for index, class_name in enumerate(df_vc["vote_class"].unique())}
df_vc["vote"] = df_vc["vote_class"].map(class_map)

# Renaming ambiguous columns
df_vc = df_vc.rename(columns={"id": "finding_id"})

# 0-based indexing for findings
df_vc["finding_id"] = df_vc["finding_id"] - 1

# Adding finding class between IN_KEV, HAS_CVE & NO_CVE
df_vc["finding_class"] = df_vc.join(df_fc.set_index("id"), on="finding_id")["class"]

# Converting timestamp to pandas datetime
df_vc["timestamp"] = pd.to_datetime(df_vc["timestamp"], format="ISO8601")

# Setting up avg related metrics
df_vc["avg"] = df_vc["finding_id"].map(df_vc.groupby("finding_id").agg({"vote": "mean"})["vote"])
df_vc["avg_error"] = abs(df_vc["vote"] - df_vc["avg"])

# Setting up title variable
df_vc["finding_title"] = pd.merge(df_vc, df_fc[["id", "title"]], left_on="finding_id", right_on="id")["title"]

# Setting up variance related metrics
df_vc["var"] = df_vc["finding_id"].map(df_vc.groupby(by="finding_id").agg({"vote": "var"})["vote"])
df_vc["var_percentile"] = df_vc["finding_id"].map(df_vc.groupby("finding_id").agg({"vote": "var"})["vote"].rank(pct=True))

df_vc.head(10)

Unnamed: 0,finding_id,user_id,vote_class,timestamp,vote,finding_class,avg,avg_error,finding_title,var,var_percentile
0,0,6,Moderate,2025-04-27 21:26:52.848233+00:00,2,3,3.714286,1.714286,Apache HTTP Server End of Life (EOL) Detection...,0.571429,0.903226
1,0,10,Critical,2025-04-28 19:49:33.566692+00:00,4,3,3.714286,0.285714,Apache HTTP Server End of Life (EOL) Detection...,0.571429,0.903226
2,0,11,Critical,2025-04-29 13:17:18.457005+00:00,4,3,3.714286,0.285714,Apache HTTP Server End of Life (EOL) Detection...,0.571429,0.903226
3,0,12,Critical,2025-04-30 01:05:39.215489+00:00,4,3,3.714286,0.285714,Apache HTTP Server End of Life (EOL) Detection...,0.571429,0.903226
4,0,13,Critical,2025-04-29 02:42:00.741533+00:00,4,3,3.714286,0.285714,Apache HTTP Server End of Life (EOL) Detection...,0.571429,0.903226
5,0,14,Critical,2025-04-29 12:46:28.339912+00:00,4,3,3.714286,0.285714,Apache HTTP Server End of Life (EOL) Detection...,0.571429,0.903226
6,0,15,Critical,2025-04-28 16:25:11.683296+00:00,4,3,3.714286,0.285714,Apache HTTP Server End of Life (EOL) Detection...,0.571429,0.903226
7,1,6,Mild,2025-04-27 22:14:00.177641+00:00,1,1,3.571429,2.571429,"PHP < 5.3.13, 5.4.x < 5.4.3 Multiple Vulnerabi...",1.285714,1.0
8,1,10,Critical,2025-04-28 19:58:24.103543+00:00,4,1,3.571429,0.428571,"PHP < 5.3.13, 5.4.x < 5.4.3 Multiple Vulnerabi...",1.285714,1.0
9,1,11,Critical,2025-04-29 20:26:51.254562+00:00,4,1,3.571429,0.428571,"PHP < 5.3.13, 5.4.x < 5.4.3 Multiple Vulnerabi...",1.285714,1.0


In [17]:
df_vc[df_vc["user_id"] == 15]

Unnamed: 0,finding_id,user_id,vote_class,timestamp,vote,finding_class,avg,avg_error,finding_title,var,var_percentile
6,0,15,Critical,2025-04-28 16:25:11.683296+00:00,4,3,3.714286,0.285714,Apache HTTP Server End of Life (EOL) Detection...,0.571429,0.903226
13,1,15,Critical,2025-04-28 16:34:13.586422+00:00,4,1,3.571429,0.428571,"PHP < 5.3.13, 5.4.x < 5.4.3 Multiple Vulnerabi...",1.285714,1.0
20,2,15,Critical,2025-04-28 16:48:15.473710+00:00,4,2,3.714286,0.285714,Multiple Devices Information Disclosure / Path...,0.238095,0.451613
27,3,15,Severe,2025-04-28 17:00:28.074190+00:00,3,2,3.0,0.0,Embedthis GoAhead 2.5.0 HTTP Header Injection ...,0.333333,0.612903
33,4,15,Severe,2025-04-28 17:06:26.639289+00:00,3,2,3.0,0.0,Microsoft Windows SMB/NETBIOS NULL Session Aut...,1.2,0.967742
39,5,15,Severe,2025-04-28 17:21:15.742737+00:00,3,2,2.833333,0.166667,SSL/TLS: Report Vulnerable Cipher Suites for H...,0.566667,0.806452
45,6,15,Moderate,2025-04-28 17:44:10.963897+00:00,2,2,2.166667,0.166667,ISC BIND Security Bypass Vulnerability - Activ...,0.166667,0.322581
51,7,15,Moderate,2025-04-28 18:35:26.611338+00:00,2,2,2.0,0.0,SSL/TLS: OpenSSL 'CVE-2016-2107' Padding Oracl...,0.0,0.064516
57,8,15,Moderate,2025-04-28 18:49:26.833021+00:00,2,3,2.0,0.0,Check if Mailserver Answer to VRFY and EXPN re...,0.0,0.064516
63,9,15,Moderate,2025-04-29 09:45:45.263167+00:00,2,3,2.0,0.0,"Geoserver 2.5.x < 2.5.5.1, 2.6.x < 2.6.4, 2.7....",0.4,0.677419


In [18]:

def plot_votes_vs_mean(user, votes_user: pd.DataFrame, usermail, filename, categorical=False):

    x = np.array(votes_user["avg"])
    y = np.array(votes_user["vote"])
    a, b = np.polyfit(x, y, 1)

    y_hat = a * x + b
    y_mean = np.mean(y)

    ss_res = np.sum((y - y_hat)**2)
    ss_tot = np.sum((y - y_mean)**2)
    r2 = 1 - (ss_res / ss_tot)


    if categorical:
      plot_x = np.array([-0.5, 4])
      plot_y = a * plot_x + b
      plt.figure(figsize=(9, 6))
      # todo-> change shapes
      plt.scatter(votes_user[votes_user["finding_class"] == IN_KEV]["avg"], votes_user[votes_user["finding_class"] == IN_KEV]["vote"], color="coral", label="Vulnerabilidades com CVE no KEV", marker="v")
      plt.scatter(votes_user[votes_user["finding_class"] == HAS_CVE]["avg"], votes_user[votes_user["finding_class"] == HAS_CVE]["vote"], color="yellowgreen", label="Vulnerabilidades com CVEs", marker="o")
      plt.scatter(votes_user[votes_user["finding_class"] == NO_CVE]["avg"], votes_user[votes_user["finding_class"] == NO_CVE]["vote"], color="cornflowerblue", label="Vulnerabilidades sem CVEs", marker="s")
      plt.plot(plot_x, plot_y, color="red", label=f"Regressão Linear (R2 = {r2:.2f})")
      plt.legend()
      plt.grid(True, linestyle=":", linewidth=0.5, color='black', alpha=0.2)
      # plt.title(f"Votos do Usuário vs Média de Votos")
      plt.xlim(0.8,4.2)
      plt.ylim(0.8,4.2)
      plt.yticks([1, 2, 3, 4], [ "Mild", "Moderate", "Severe", "Critical"])
      plt.xticks([1.375, 2.125, 2.875, 3.625], [ "Mild", "Moderate", "Severe", "Critical"])
      plt.ylabel("Análises do Residente")
      plt.xlabel("Média das Análises de Todos os Residentes")

      categorical_dir = "../../data/votebymean/categorical/"
      if not os.path.exists(categorical_dir):
        os.makedirs(categorical_dir, exist_ok=True)
      plt.savefig(f"{categorical_dir}{filename}")

      user_dir = f"../../data/byuser/{usermail}/"
      if not os.path.exists(user_dir):
        os.makedirs(user_dir, exist_ok=True)
      plt.savefig(f"{user_dir}/{filename}")

    else:

      plot_x = np.array([-1, 10])
      plot_y = a * plot_x + b
      plt.figure(figsize=(9, 6))
      # todo-> change shapes
      plt.scatter(votes_user[votes_user["finding_class"] == IN_KEV]["avg"], votes_user[votes_user["finding_class"] == IN_KEV]["vote"], color="coral", label="Vulnerabilidades com CVE no KEV", marker="v")
      plt.scatter(votes_user[votes_user["finding_class"] == HAS_CVE]["avg"], votes_user[votes_user["finding_class"] == HAS_CVE]["vote"], color="yellowgreen", label="Vulnerabilidades com CVEs", marker="o")
      plt.scatter(votes_user[votes_user["finding_class"] == NO_CVE]["avg"], votes_user[votes_user["finding_class"] == NO_CVE]["vote"], color="cornflowerblue", label="Vulnerabilidades sem CVEs", marker="s")
      plt.plot(plot_x, plot_y, color="red", label=f"Regressão Linear (R2 = {r2:.2f})")
      plt.legend()
      plt.grid(True, linestyle=":", linewidth=0.5, color='black', alpha=0.2)
      # plt.title(f"Votos do Usuário vs Média de Votos")
      plt.xlim(-1,11)
      plt.ylim(-1,11)
      plt.yticks(np.arange(0, 11, 1))
      plt.xticks(np.arange(0, 11, 1))
      plt.ylabel("Análises do Residente")
      plt.xlabel("Média das Análises de Todos os Residentes")

      numerical_dir = "../../data/votebymean/numerical/"
      if not os.path.exists(numerical_dir):
        os.makedirs(numerical_dir, exist_ok=True)
      plt.savefig(f"{numerical_dir}{filename}.png")

      user_dir = f"../../data/byuser/{usermail}/"
      if not os.path.exists(user_dir):
        os.makedirs(user_dir, exist_ok=True)
      plt.savefig(f"{user_dir}/{filename}")

    plt.close()

def plot_rank_error_time_series(intern, votes_intern, x_ticks=False):
    votes_intern.sort_values(by="timestamp", ascending=True, inplace=True)

    plt.figure(figsize=(12, 8))
    plt.scatter(votes_intern["timestamp"], votes_intern["avg_error"])

    plt.ylim(-0.5, 11)
    plt.yticks(np.arange(0, 11, 1))
    plt.ylabel("Erro absoluto em relação a média")
    plt.grid(True, linestyle=":", linewidth=0.5, color='black', alpha=0.2)
    plt.title("Série temporal do erro em relação ao valor médio do voto")

    if x_ticks:
        delta_timestamp = votes_intern["timestamp"].max() - votes_intern["timestamp"].min()

        if delta_timestamp < datetime.timedelta(minutes=1):
          plt.gca().xaxis.set_major_locator(mdates.SecondLocator(bysecond=range(0, 60, 2)))
          plt.gca().xaxis.set_major_formatter(mdates.DateFormatter("%d/%m\n%H:%M:%S"))
        elif delta_timestamp < datetime.timedelta(hours=0.5):
          plt.gca().xaxis.set_major_locator(mdates.MinuteLocator(interval=1))
          plt.gca().xaxis.set_major_formatter(mdates.DateFormatter("%d/%m\n%H:%M:%S"))
        elif delta_timestamp < datetime.timedelta(hours=1):
          plt.gca().xaxis.set_major_locator(mdates.MinuteLocator(interval=5))
          plt.gca().xaxis.set_major_formatter(mdates.DateFormatter("%d/%m\n%H:%M:%S"))
        elif delta_timestamp < datetime.timedelta(hours=3):
          plt.gca().xaxis.set_major_locator(mdates.MinuteLocator(interval=10))
          plt.gca().xaxis.set_major_formatter(mdates.DateFormatter("%d/%m\n%H:%M:%S"))
        elif delta_timestamp < datetime.timedelta(hours=6):
          plt.gca().xaxis.set_major_locator(mdates.HourLocator(interval=1))
          plt.gca().xaxis.set_major_formatter(mdates.DateFormatter("%d/%m\n%H:%M:%S"))
        elif delta_timestamp < datetime.timedelta(days=1):
          plt.gca().xaxis.set_major_locator(mdates.HourLocator(interval=4))
          plt.gca().xaxis.set_major_formatter(mdates.DateFormatter("%d/%m\n%H:%M"))
        elif delta_timestamp < datetime.timedelta(days=7):
          plt.gca().xaxis.set_major_locator(mdates.DayLocator(interval=1))
          plt.gca().xaxis.set_major_formatter(mdates.DateFormatter("%d/%m"))
    else:
        plt.gca().xaxis.set_ticks([])

        plt.xlabel("Tempo")
    plt.savefig(f"../../data/vote_error_timeseries/{intern}.png", )

def generate_html_data(user, df_user, categorical=False):
    top3_highest_diff = df_user.sort_values(by="avg_error", ascending=False).iloc[:3]
    top3_highest_diff = top3_highest_diff[["finding_id", "avg", "vote", "avg_error", "var", "finding_title", "var_percentile"]].rename(columns={"finding_id": "id", "avg": "avg_rank", "vote": "user_rank", "finding_title": "title"})
    # round values
    top3_highest_diff["avg_rank"] = top3_highest_diff["avg_rank"].round(2)
    top3_highest_diff["user_rank"] = top3_highest_diff["user_rank"].round(2)
    top3_highest_diff["avg_error"] = top3_highest_diff["avg_error"].round(2)
    top3_highest_diff["var_percentile"] = top3_highest_diff["var_percentile"].round(2) * 100
    top3_highest_diff["title"] = top3_highest_diff["title"].astype("string")

    hightlight_vuln = top3_highest_diff.to_dict('records')

    final_vulns = []
    for vuln in hightlight_vuln:
      if not (vuln["avg_rank"] - vuln["var"]**0.5 <= vuln["user_rank"] <= vuln["avg_rank"] - vuln["var"]**0.5):
        final_vulns.append(vuln)


    html_data = {
    "highlight_vuln": final_vulns,
    "is_empty": False,
    "is_categorical": categorical
  }

    return html_data

In [19]:
from email_generator import generate_html

In [20]:
cat_users_df

Unnamed: 0,user_id,Nome,email,pass,role
0,20,Eddy Martins,Eddymartinsdias@hotmail.com,:<q{C9f]mTe#,mentor
1,1,Admin,admin@defectdojo.local,,
2,13,Alonso Dos Santos Silva,alonsosatos4@gmail.com,=NzhMry>D4Px,intern
3,17,Rodrigo de Ávila Sampaio Rezende,avilarezende@gmail.com,&bv1J8b;Rk}L,mentor
4,2,Bernnardo Seraphim,bernnardosbo@gmail.com,,
5,27,César Augusto Hass Loureiro,cesar.loureiro@pop-rs.rnp.br,gj=MavFrP#Y4,mentor
6,23,Danyel Mendes Nogueira Ramos,danyel.mendes@ifsertao-pe.edu.br,DgV9sIc@?cPN,mentor
7,15,Vitor Roberto Cattai,dr.cattai@gmail.com,;NsQ}xU$N5zo,intern
8,24,Eric de Luna Fraga,ericdlfraga@gmail.com,0k:P.YC&t6Pi,mentor
9,25,Fernando Pompeo Amatte,famatte@gmail.com,2C9&G]!8:sZo,mentor


In [21]:
df_users.sort_values(by="Nome")

Unnamed: 0,Nome,email,role,team,project
45,Admin,admin@defectdojo.local,,CRIVO,CRIVO
43,Alessandro,alessandro.fonseca@ebserh.gov.br,mentor,,
23,Alexandre Mundim de Oliveira,alexandremundimdeoliveira@gmail.com,mentor,,
29,Alison Carmo Arantes,alison@dcc.ufmg.br,mentor,,
5,Alonso Dos Santos Silva,alonsosatos4@gmail.com,intern,,
15,André Luiz de Souza Freitas,andre.freitas@unir.br,mentor,,
46,Bernnardo Seraphim,bernnardosbo@gmail.com,,CRIVO,CRIVO
30,Christian Pereira Lima,christian.lima@proton.me,mentor,,
38,César Augusto Hass Loureiro,cesar.loureiro@pop-rs.rnp.br,mentor,,
31,Daniel Rodrigues Pereira,danielrodriguesp@gmail.com,mentor,,


In [22]:
import shutil

def generate_user(user: int, is_categorical: bool):
  html_data = {}

  if not is_categorical:
    df_user = df_vn[df_vn["user_id"] == user].copy()
    user_name = num_users_df[num_users_df["user_id"] == user]["Nome"].values[0].split()[0]
    user_mail = num_users_df[num_users_df["user_id"] == user]["email"].values[0]
    user_pass = num_users_df[num_users_df["user_id"] == user]["pass"].values[0]
  else:
    df_user = df_vc[df_vc["user_id"] == user].copy()
    user_name = cat_users_df[cat_users_df["user_id"] == user]["Nome"].values[0].split()[0]
    user_mail = cat_users_df[cat_users_df["user_id"] == user]["email"].values[0]
    user_pass = cat_users_df[cat_users_df["user_id"] == user]["pass"].values[0]

  html_data["intern_name"] = user_name

  if len(df_user) < 11:
    html_data["is_empty"] = True
    html_data["EMAIL_INTERN"] = user_mail
    html_data["SENHA_INTERN"] = user_pass
    html_data["is_email"] = True
    generate_html(html_data, usermail=user_mail, filename="email.html", categorical=is_categorical)
    html_data["is_email"] = False
    generate_html(html_data, usermail=user_mail, filename="index.html", categorical=is_categorical)
    return

  #1 - Scatterplot with one point per vulnerability (x = average rank, y = intern’s rank)
  plot_votes_vs_mean(user, df_user, user_mail, "scatterplot.png", is_categorical)

  #3 - Sort rankings by time, then plot average error for each ranking (x = vulnerability ranking order by time; y = |rank(intern) - rank(average)|)
  # plot_rank_error_time_series(user, df_user, x_ticks=True)

  #2 - Get 3 vulnerabilities with the biggest difference between average and intern's rank
  html_data.update(generate_html_data(user, df_user, categorical=is_categorical))

  html_data["is_email"] = True
  generate_html(html_data, usermail=user_mail, filename="email.html", categorical=is_categorical)
  html_data["is_email"] = False
  generate_html(html_data, usermail=user_mail, filename="index.html", categorical=is_categorical)

  src = f"../../data/importance/feat_importance_user_{user_mail}_2x1.png"
  dst_dir = f"../../data/byuser/{user_mail}/"
  dst = os.path.join(dst_dir, "importance.png")
  if os.path.exists(src):
    if not os.path.exists(dst_dir):
      os.makedirs(dst_dir, exist_ok=True)
    shutil.copy(src, dst)

In [23]:
for user in num_users_df["user_id"].unique():
  generate_user(user, False)


In [24]:
for user in cat_users_df["user_id"].unique():
  generate_user(user, True)


In [29]:
# shared_findings = df_fc.merge(df_fn, on="description", how="inner")["id_x"].to_numpy()
# exclusive_findings = np.setxor1d(df_fc["id"].to_numpy(), shared_findings)


exclusive_findings = np.arange(0, 10)
shared_findings = np.arange(10, 31)
all_findings = np.union1d(exclusive_findings, shared_findings)

In [30]:
import seaborn as sns

with open("../../data/pickles/joined_class_votes.pickle", "rb") as f:
  j_votes = pkl.load(f)
  

In [42]:
def normalize_column(df: pd.DataFrame, column: str, cur_lower_bound: float, cur_higher_bound: float, new_lower_bound: float, new_higher_bound: float):

  if cur_lower_bound == cur_higher_bound:
    return df[column].apply(lambda x: new_lower_bound)
  
  alpha = (new_higher_bound - new_lower_bound) / (cur_higher_bound - cur_lower_bound)
  beta = new_lower_bound - cur_lower_bound * alpha 
  
  return df[column].apply(lambda x: alpha * x + beta)

In [43]:
CATEGORICAL = 0b00 
NUMERICAL = 0b01
SHARED = 0b10

In [None]:
# def generate_finding(finding_id: int, setting: int, title: bool):
  
#     plt.figure(figsize=(20, 12))
#     if setting == NUMERICAL:
#       df_finding = df_vn[df_vn["finding_id"] == finding_id].copy()
#       max_min = (0,11)
#     elif setting == CATEGORICAL:
#       df_finding = df_vc[df_vc["finding_id"] == finding_id].copy()
#       max_min = (0,5)
#       plt.xticks([1,2,3,4], ["Mild", "Moderate", "Severe", "Critical"])
#     elif setting == SHARED:
#       df_finding_numeric = df_vn[df_vn["finding_id"] == finding_id].copy()
#       df_finding_numeric["vote"] = normalize_column(df_finding_numeric, "vote", 1, 10, 1, 4)
#       df_finding_numeric["from"] = "numeric"
#       df_finding_categorical = df_vc[df_vc["finding_id"] == finding_id].copy()
#       df_finding_categorical["from"] = "categoric"
#       df_finding = pd.concat([df_finding_numeric, df_finding_categorical])
#       max_min = (0,5)
#       plt.xticks([1,2,3,4], ["Mild", "Moderate", "Severe", "Critical"])
      
      
#     # check for null variance, if so, generate noise in the sample
#     if df_finding["vote"].var() == 0:
#       noise = np.random.normal(0, 0.1, df_finding.shape[0])
#       df_finding["vote"] = df_finding["vote"] + noise

#     plt.xlim(*max_min)
#     plt.ylim(0, 1.29)
#     plt.xlabel("Distribuição de Risco", fontsize=18, labelpad=15)
#     plt.ylabel("Densidade de Probabilidade", fontsize=18, labelpad=15)
#     plt.tick_params(axis='both', labelsize=16)
#     sns.kdeplot(df_finding["vote"], bw_adjust=0.5, color="cornflowerblue", linewidth=3, label="Distribuição de Votos")
    
#     SAVE_PATH = f"../../data/kde/{'categorical' if setting == CATEGORICAL else 'numerical' if setting == NUMERICAL else 'shared'}"
    
#     if not os.path.exists(SAVE_PATH):
#       os.makedirs(SAVE_PATH)
      
#     plt.tight_layout()
#     plt.savefig(f"{SAVE_PATH}/finding_{finding_id}.png")
#     plt.close()

    

In [225]:
def generate_finding(finding_id: int, setting: int, title: bool):
  
    plt.figure(figsize=(20, 12))
    if setting == NUMERICAL:
      df_finding = df_vn[df_vn["finding_id"] == finding_id].copy()
      max_min = (0,11)
    elif setting == CATEGORICAL:
      df_finding = df_vc[df_vc["finding_id"] == finding_id].copy()
      df_finding["vote"] = normalize_column(df_finding, "vote", 1, 4, 1, 10)
      max_min = (-0.5,11.5)
      # plt.xticks([2.125,4.375,6.625,8.875], ["Mild", "Moderate", "Severe", "Critical"])
      plt.xticks([1,4,7,10], ["Mild", "Moderate", "Severe", "Critical"])
    elif setting == SHARED:
      df_finding_numeric = df_vn[df_vn["finding_id"] == finding_id].copy()
      df_finding_categorical = df_vc[df_vc["finding_id"] == finding_id].copy()
      df_finding_categorical["vote"] = normalize_column(df_finding_categorical, "vote", 1, 4, 1, 10)
      df_finding = pd.concat([df_finding_numeric, df_finding_categorical])
      max_min = (-0.5,11.5)
      # plt.xticks([2.125,4.375,6.625,8.875], ["Mild", "Moderate", "Severe", "Critical"])
      plt.xticks([1,4,7,10], ["Mild", "Moderate", "Severe", "Critical"])
      
      
    # check for null variance, if so, generate noise in the sample
    if df_finding["vote"].var() == 0:
      noise = np.random.normal(0, 0.125, df_finding.shape[0])
      df_finding["vote"] = df_finding["vote"] + noise

    plt.xlim(*max_min)
    plt.ylim(0, 1.29)
    plt.xlabel("Distribuição de Risco", fontsize=45, labelpad=60)
    plt.ylabel("Densidade de Probabilidade", fontsize=45, labelpad=60)
    plt.tick_params(axis='both', labelsize=35)
    sns.kdeplot(df_finding["vote"], fill=True, alpha=0.2, bw_adjust=0.5, color="cornflowerblue", linewidth=5, label="Distribuição de Votos")
    
    SAVE_PATH = f"../../data/kde/{'categorical' if setting == CATEGORICAL else 'numerical' if setting == NUMERICAL else 'shared'}"
    
    if not os.path.exists(SAVE_PATH):
      os.makedirs(SAVE_PATH)
      
    plt.tight_layout()
    plt.savefig(f"{SAVE_PATH}/finding_{finding_id}.png")
    plt.close()

    

In [226]:
for finding in all_findings:
    generate_finding(finding, CATEGORICAL, True)
    generate_finding(finding, NUMERICAL, True)


In [227]:
for finding in shared_findings:
    generate_finding(finding, SHARED, True)