Data

Tools

Indexes

Applications

Experiments

Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / david-a-wheeler/flawfinder issues and pull requests

#93 - Code reference issue

Issue - State: open - Opened by mccrearyp 9 months ago

#92 - [BUG][PRINTABLE STACK] Using gettext I can print the stack

Issue - State: closed - Opened by gargantuadev 10 months ago - 2 comments

#88 - Update CWE list delimiters

Pull Request - State: open - Opened by dkt01 about 1 year ago

#87 - False positive when a variable is named "system"

Issue - State: open - Opened by thesp0nge about 1 year ago

#86 - Improve sscanf and friend vulnerability context

Issue - State: open - Opened by thesp0nge about 1 year ago

#85 - Add a smell score for each file

Issue - State: open - Opened by thesp0nge about 1 year ago

#84 - Grouping issues by vulnerability title

Issue - State: open - Opened by thesp0nge about 1 year ago

#82 - flawfinder mis-identifies symbols named "system" as CWE-78

Issue - State: open - Opened by 0xg0nz0 over 1 year ago

#81 - Add sonarqube integration

Pull Request - State: open - Opened by Patschkowski over 1 year ago - 4 comments

#80 - Allow skipping bad characters

Issue - State: open - Opened by eranzim over 1 year ago - 4 comments

#79 - Supported python versions

Issue - State: open - Opened by jurgenwigg almost 2 years ago - 1 comment

#78 - SARIF output malformed due to incorrect URI, which causes GitHub upload to fail

Issue - State: open - Opened by Robyt3 about 2 years ago - 1 comment

#77 - Can I Modfy more CWE?

Issue - State: open - Opened by trangnt2304 over 2 years ago - 1 comment

#76 - Flawfinder reports abseil::StrCat the same as std:strcat

Issue - State: open - Opened by tophersmith over 2 years ago - 1 comment

#75 - binary/hex integer literals with separators lead to parse error

Issue - State: open - Opened by bloerwald almost 3 years ago - 2 comments

#73 - Remove duplicate word in help

Pull Request - State: closed - Opened by Crayon2000 almost 3 years ago

#72 - Add missing CWE(s) to FF1057's warning text

Pull Request - State: closed - Opened by mario-campos about 3 years ago - 4 comments

#71 - FF1057 is missing CWE attribution in the warning text

Issue - State: closed - Opened by mario-campos about 3 years ago - 1 comment

#70 - --csv option wont output hits to csv file from mac terminal

Issue - State: closed - Opened by X011ABC about 3 years ago

#68 - Character Encoding Error on UTF-8 Encoded Source File with U+0441

Issue - State: open - Opened by kuchungmsft about 3 years ago - 20 comments

#67 - SARIF artifact location paths

Issue - State: open - Opened by Jeeppler over 3 years ago - 3 comments

#66 - Invalid helpUri generated

Issue - State: open - Opened by FlorianKleemiss over 3 years ago - 2 comments

#65 - Add a --ignore option

Issue - State: open - Opened by mjcrawford22 over 3 years ago

#64 - Fix typos in markdown docs

Pull Request - State: closed - Opened by myersg86 over 3 years ago - 1 comment

#63 - Presence of ioctl

Issue - State: open - Opened by aug2uag over 3 years ago

#62 - Add a closing tag (</li>)

Pull Request - State: closed - Opened by Loge12 over 3 years ago - 3 comments

#61 - Feature Request: Support Stream Use

Issue - State: open - Opened by cyntheticfox over 3 years ago

#60 - Optimize builtin SPEC file

Pull Request - State: closed - Opened by WeilunFong almost 4 years ago

#59 - std::istream::read() reports security issue, false alert?

Issue - State: open - Opened by oneiric almost 4 years ago - 4 comments

#58 - print warning messages to stderr

Pull Request - State: closed - Opened by pbderr almost 4 years ago - 3 comments

#57 - Only output CSV when using CSV option

Issue - State: closed - Opened by pbderr almost 4 years ago - 1 comment

#56 - Consider rewriting this to use joern or alternative

Issue - State: open - Opened by prabhu about 4 years ago - 1 comment

#55 - Update Github Action name & version in readme.md

Pull Request - State: closed - Opened by yongyan-gh about 4 years ago

#54 - entrypoint.sh: Modify to use "$@"

Pull Request - State: closed - Opened by david-a-wheeler about 4 years ago - 5 comments

#53 - Add an svg icon file for GitHub actions

Issue - State: open - Opened by david-a-wheeler about 4 years ago - 56 comments

#52 - Fix Sarif output relationship target id format.

Pull Request - State: closed - Opened by yongyan-gh about 4 years ago - 5 comments

#51 - Add Github Action required files and test workflow

Pull Request - State: closed - Opened by yongyan-gh about 4 years ago - 14 comments

#50 - `c_printf` possible false positive for format macro constant

Issue - State: open - Opened by cordis-dev about 4 years ago - 1 comment

#49 - Add GitHub Actions integration

Issue - State: open - Opened by david-a-wheeler about 4 years ago - 32 comments

#48 - How i can get an output with .csv format? In python,i use "flawfinder ./test"

Issue - State: closed - Opened by xiao1i about 4 years ago - 1 comment

#47 - v2.0.16 source package doesn't contain flawfinder py

Issue - State: closed - Opened by OlHermit about 4 years ago - 3 comments

#46 - Only output CSV when using CSV option

Issue - State: closed - Opened by myersg86 about 4 years ago - 3 comments

#45 - if (!strncasecmp(arg, "file://", strlen("file://"))) throws an issue #21

Issue - State: open - Opened by vtorri about 4 years ago - 2 comments

#44 - Track curly brace level in extract_c_parameters

Pull Request - State: closed - Opened by myersg86 about 4 years ago - 5 comments

#42 - Add native sarif output

Pull Request - State: closed - Opened by yongyan-gh about 4 years ago - 4 comments

#41 - Flawfinder do not support C++11 syntax: lambdas, string literals.

Issue - State: open - Opened by ystefinko over 4 years ago - 1 comment

#40 - Make Git patch works

Pull Request - State: closed - Opened by RobinGeffroy over 4 years ago - 1 comment

#39 - output to json

Issue - State: closed - Opened by smijolovic over 4 years ago - 6 comments

#37 - Feature/cross platform setup

Pull Request - State: closed - Opened by ben-edna over 4 years ago - 1 comment

#36 - Make flawfinder easier to install on windows

Issue - State: closed - Opened by ben-edna over 4 years ago - 6 comments

#35 - Add Sarif friendly opaque rule id

Pull Request - State: closed - Opened by yongyan-gh over 4 years ago - 15 comments

#34 - Recognize .sc file extension as C code

Issue - State: closed - Opened by pbderr over 4 years ago - 4 comments

#33 - Export FlawFinder reports as SARIF?

Issue - State: closed - Opened by michaelcfanning over 4 years ago - 32 comments

#32 - Certificate expired @ https://dwheeler.com/flawfinder

Issue - State: closed - Opened by Un1Gfn over 4 years ago - 3 comments

#31 - Fix encoding error message misspelling

Pull Request - State: closed - Opened by squaresurf over 4 years ago - 1 comment

#30 - Man install in 2.0.14 release

Issue - State: closed - Opened by jubalh over 4 years ago - 3 comments

#29 - Enhance detection and diagnostics of LoadLibrary(Ex)

Pull Request - State: closed - Opened by sylveon over 4 years ago - 10 comments

#28 - flawfinder mischaracterizes printf -> vprintf style

Issue - State: open - Opened by zyga over 4 years ago - 3 comments

#27 - flawfinder is confused by __attribute__((format(printf,..))) syntax

Issue - State: open - Opened by zyga over 4 years ago - 3 comments

#25 - Failure when parsing a lambda in a parameter list

Issue - State: closed - Opened by kpeaton over 4 years ago - 3 comments

#24 - How to overcome fstream::open warning? (CWE-362)

Issue - State: closed - Opened by klugier over 4 years ago - 2 comments

#23 - false alert on getopt

Issue - State: closed - Opened by lioriz almost 5 years ago - 1 comment

#22 - False positive 'shell' (CWE-78) for boost::system::error_code

Issue - State: closed - Opened by czw almost 5 years ago - 3 comments

#21 - Fix misrecognized number separator in C++14

Pull Request - State: closed - Opened by duongdominhchau over 5 years ago - 2 comments

#20 - false positive that should be caught?

Issue - State: open - Opened by rgetz over 5 years ago - 2 comments

#19 - EnterCriticalSection flagged?

Issue - State: closed - Opened by rgetz over 5 years ago - 4 comments

#18 - Fixes for Python3.6+ support

Pull Request - State: closed - Opened by vmayoral over 5 years ago - 8 comments

#17 - Antivirus/anti-malware/anti-spyware

Issue - State: closed - Opened by ghost over 5 years ago - 2 comments

#16 - UTF-8 conversion assist?

Issue - State: closed - Opened by unquietwiki almost 6 years ago - 4 comments

#15 - Move all test related files into a subdirectory

Pull Request - State: closed - Opened by jhachenbergerSIT almost 6 years ago - 3 comments

#14 - Splitting flawfinder source code into spearate files

Issue - State: closed - Opened by jhachenbergerSIT almost 6 years ago - 1 comment

#13 - Move source code into separate directory

Issue - State: closed - Opened by jhachenbergerSIT almost 6 years ago - 1 comment

#12 - Move documentation into separate docs/ directory

Issue - State: closed - Opened by jhachenbergerSIT almost 6 years ago - 2 comments

#11 - Move tests into separate tests/ directory

Issue - State: closed - Opened by jhachenbergerSIT almost 6 years ago - 3 comments

#10 - Remove unused files

Pull Request - State: closed - Opened by jhachenbergerSIT almost 6 years ago - 2 comments

#9 - Fix option --diffhitlist

Pull Request - State: closed - Opened by jerome-labidurie about 6 years ago - 2 comments

#8 - option --diffhitlist seems to be broken

Issue - State: closed - Opened by jerome-labidurie about 6 years ago

#7 - Choosing higher level technology for source code searches?

Issue - State: closed - Opened by elfring over 6 years ago - 13 comments

#6 - Construct string literals without using plus operators

Pull Request - State: closed - Opened by elfring over 6 years ago - 2 comments

#5 - Addition of a build system generator

Issue - State: closed - Opened by elfring over 6 years ago - 5 comments

#4 - Use augmented assignment statements

Pull Request - State: closed - Opened by elfring over 6 years ago - 1 comment

#3 - Using augmented assignment statements

Issue - State: closed - Opened by elfring over 6 years ago - 6 comments

#2 - Construction of string literals without using plus operators

Issue - State: closed - Opened by elfring over 6 years ago - 7 comments

#1 - Extensions for source code search patterns in more structured ways

Issue - State: open - Opened by elfring over 6 years ago - 3 comments