There were some merge conflicts in the original merge of teh
memcpy change - to fix them, regenerate the correct test results.
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
This was reported by philipp. After some tweaking I got the warning
to work on both Python 2 and Python 3.
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
We renamed README to README.md but didn't fix all the references.
This fixes the references (hopefully we got them all!).
My thanks to philipp for reporting this!
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
Fixes bug report #16 Installation with filename extension override fails
from philipp. It noted that
'make PYTHONEXT=.py install fails because it tries to copy "flawfinder.py".'
Thanks for the report!!
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
We don't currently support this combination, so error out if it's attempted.
Fixes SourceForge bug report #15 "Incomplete HTML output for list of rules".
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
If we see an unterminated parameter list in the code being analyzed,
continue to warn, but treat it as an empty list and continue.
That say, we can try to process at least some of the code.
This fixes bug report #12 TypeError raised for incomplete source code
from philipp created: 2018-03-10.
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
Merge in a nice long set of improvements from:
https://github.com/nickthetait/flawfinder/
A BIG thanks goes to Nicholas Tait (nickthetait).
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
Fix a typo in the gsignal|ssignal rule.
This fixes SF bug #8.
My thanks to philipp for reporting this!
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
The www.dwheeler.com site has long supported https, but I forgot
to change these URLs. Fix that, so that people will use https.
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
Change possible_levels to a tuple. Arrays are mutable,
but we never want to mutate this value, so changing it
to a tuple reduces the risk of accidentally mutating it.
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
This commit means that the output provides useful summary data,
even if the lower-level hits are suppressed.
Note that this does use a little more memory when some hits
are supressed, since the hitlist is fully created even
if only parts are displayed. However, modern systems have
lots of memory. Hopefully we'll never analyze software
with so many problems that this is a problem itself :-).
If someone ever has that problem, they can output everything
and filter it separately.
Signed-off-by: David A. Wheeler <dwheeler@dwheeler.com>
David A. Wheeler
Michael Clark
nickthetait
Jon Hood
David A. Wheeler