exists a paper on the implemented analysis?

designsecurity / progpilot

A static analysis tool for security

MIT License

332 stars 61 forks source link

exists a paper on the implemented analysis? #32

Closed MBcom closed 1 year ago

MBcom commented 3 years ago

Thank you for the great work. Is there a corresponding paper on the implemented basics, i.e. analysis lattice, transfer functions, soundness, that can be cited?

eric-therond commented 1 year ago

Progpilot uses a basic "taint analysis" based on "control flow graph" / "data flow". I guess it exists a lot of papers on this subject, but Progpilot was not based on a specific one.