Paketti: flawfinder (1.31-1)

examines source code and looks for security weaknesses

Flawfinder searches through C/C++ source code looking for potential security flaws and produces a report describing the potential flaws found in source code, ranking them by likely severity.

Like RATS, Flawfinder reports are not a direct indication of a vulnerability, but provide a reasonable starting point for performing manual security audits in source code.

Flawfinder can also generate differential reports by pointing it to a patch (diff) file describing the code changes. This way it can be used to determine if the potential flaws found in code have increased or decreased after a commit to a source code management system like CVS or Subversion.

Tagit: Software Development: C Development, C++ Development, Kirjastot, devel::testing-qa, implemented-in::c, User Interface: Command Line, Role: role::devel-lib, role::program, Scope: Utility, Purpose: use::checking, works-with::software:source

This page is also available in the following languages (How to set the default document language):