walkero
/
flawfinder
1
0
Fork 0
Code Issues Pull Requests Projects Releases 1 Wiki Activity
a static analysis tool for finding vulnerabilities in C/C++ source code
92 Commits 2 Branches 24 Tags 724 KiB
Python 57.1%
C 24.8%
Roff 12.3%
HTML 3.3%
Makefile 2.3%
Go to file
David A. Wheeler 75ce30e1c1 ChangeLog: Update for upcoming release 2014-08-02 22:15:51 -04:00
COPYING Initial import 2007-01-16 02:44:45 +00:00
ChangeLog ChangeLog: Update for upcoming release 2014-08-02 22:15:51 -04:00
INSTALL.txt INSTALL.txt: Simplify text. 2014-07-28 21:41:02 -04:00
MANIFEST.in Initial import 2007-01-16 02:44:45 +00:00
README Tweak README to explain, in a little more detail, what it is. 2014-07-30 23:25:10 -04:00
announcement Initial import 2007-01-16 02:44:45 +00:00
correct-results.html Add cross-link to "Secure Programming" book 2014-07-28 21:25:00 -04:00
correct-results.txt Add cross-link to "Secure Programming" book 2014-07-28 21:25:00 -04:00
cwe.l Add ability to list CWEs in source code 2014-07-13 09:44:34 -04:00
flawfinder Fix some warning text (CWE reference was in wrong place) 2014-08-02 21:59:28 -04:00
flawfinder.1 Document how to find all patterns that do NOT have a CWE mapping. 2014-08-02 22:05:23 -04:00
flawfinder.spec Switch version # to 1.31. 2014-07-27 17:19:24 -04:00
flawtest.c Initial import 2007-01-16 02:44:45 +00:00
junk.c Add support for git diff (as well as svn diff and GNU diff) 2014-07-12 21:36:54 -04:00
makefile makefile: Tweak internal convenience target 2014-07-28 22:09:49 -04:00
no-ending-newline.c Version number now 1.28, add test for filenames without trailing newline 2014-07-12 07:01:23 -04:00
setup.cfg Initial import 2007-01-16 02:44:45 +00:00
setup.py Switch version # to 1.31. 2014-07-27 17:19:24 -04:00
sloctest.c Initial import 2007-01-16 02:44:45 +00:00
test.c Initial import 2007-01-16 02:44:45 +00:00
test2.c Initial import 2007-01-16 02:44:45 +00:00

README 

This is "flawfinder" by David A. Wheeler, <dwheeler@dwheeler.com>.
It's a simple Python program for scanning C/C++ source code
for security problems. It uses lexical scanning to find tokens
(such as function names) that suggest likely problems, estimates their
level of risk (e.g., by the text of function calls), and reports the resutlts.

For more information, see:
 http://www.dwheeler.com/flawfinder

See INSTALL.txt for installation instructions.
It is released under the GNU GPL license version 2 or later (GPLv2+).