-
### Issue type
Other type of issue
### Bug description
Coding bugs identified by this video https://www.youtube.com/watch?v=SAVbpFTj81I
The video is a year old so some of the errors don't exist …
-
# Static Code Analysis
`Computer programming is an exact science in that all properties of the program and all consequences of executing it in any given environment can, in principle, be found out …
-
- PHPMD version: 2.15.0snapshot202312110823
- PHP Version: 8.3.7
- Installation type: phar file
- Operating System / Distribution & Version: Debian 12 (Docker container using Docker image based on …
-
Some algorithms have vartime components on non-secret data requiring associated use of vartime functionality.
e.g. where the vartime use is associated with non-secret dependant data.
This could …
-
**Is your feature request related to a problem? Please describe.**
Tracking which registers depend on unknown or varying input values (e.g. passed arguments, mutable system registers or writable me…
-
This includes public (Sonar) and internal scanners
-
## ENVIRONMENT
```
OS and Version: Win11 21H2 22000.16963.
Python Version: python 3.8.8
MobSF Version: v3.6.3Beta
```
## EXPLANATION OF THE ISSUE
```
I can check some old version of this…
-
## Summary
Static analysis tool for TON offers following advantages:
- Interprocedural and context-sensitive
- Path-sensitive
- Bytecode level
- Bit-precise
- Minimal false-positives
- Exte…
-
Since ArtPaint is getting some recent love, I thought I'd run the Clang static analysis on the code and provide the report here
[scan-build-2022-04-08-ArtPaint.zip](https://github.com/HaikuArchives/A…
-
### Finding Description
The app is vulnerable to the Janus exploit.
Janus ([CVE-2017-13156](https://nvd.nist.gov/vuln/detail/CVE-2017-13156)) exposes a critical flaw in Android's APK validation proc…