issues
search
dotnet-security-guard
/
roslyn-security-guard
Roslyn analyzers that aim to help security audit on .NET applications.
https://dotnet-security-guard.github.io
GNU Lesser General Public License v3.0
208
stars
38
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Version 2.3.0 gives warnings: An instance of analyzer RoslynSecurityGuard.Analyzers.WeakPasswordValidatorPropertyAnalyzer cannot be created
#104
ronenfe
opened
5 years ago
0
Custom Anayzer https://github.com/SonarSource/sonarqube-roslyn-sdk/issues/110
#103
sodeshpa
opened
5 years ago
0
RoslynSecurityGuard Jar
#102
sodeshpa
opened
5 years ago
0
System.ArgumentException : An item with the same key has already been added.
#101
jakubsuchybio
opened
6 years ago
0
Added taint analysis sinks for open redirects and tests.
#100
bchurchill
opened
6 years ago
1
Warnings of Uhandled Exceptions
#99
ronenfe
closed
6 years ago
0
Reduce false positives in CsrfAnalyzer. Unit tests fixed. Other smaller fixes.
#98
JarLob
closed
6 years ago
0
Fix WeakCipherModeAnalyzer
#97
SJMakin
closed
6 years ago
2
WeakCipherModeAnalyzer broken
#96
quincycs
closed
6 years ago
0
[Feature request] Open redirect
#95
tristandostaler
opened
6 years ago
1
VS2017: getting CA0064 (No analysis was performed)
#94
AndreyAspose
opened
6 years ago
8
Installed in VS 2015 no issues are showing
#93
akhare22sandeep
opened
6 years ago
2
New release please
#92
JarLob
opened
6 years ago
3
Update README.md
#91
felickz
closed
6 years ago
0
SG0016 - allow user to change/add to the Token checking attribute name
#90
duncan-bradley
opened
6 years ago
1
VS 2017 .net core 1 - Large number of exception from taint analyzer
#89
oazabir
opened
7 years ago
8
RoslynSecurityGuard.Analyzers.Taint.TaintAnalyzer
#88
ianp-its
opened
7 years ago
12
False positive Potential SQL injection with MsSQL Data Provider
#87
sady4850
opened
7 years ago
0
Detect unsafe usages of JSon deserializers
#86
jessehouwing
opened
7 years ago
2
Improve CsrfTokenAnalyzer #75
#85
h3xstream
closed
7 years ago
0
generic parameter may have a default value that is null
#84
NatePlumm
closed
7 years ago
0
False Positive - CSRF vulnerability on HttpPost Controller decorated with custom security tag
#83
VladPapacostea-SM
opened
7 years ago
1
Roslyn analyzers should be dev dependencies
#82
tillig
closed
7 years ago
1
New Rule: Detect usage of old SSL implementations in the Security Manager
#81
jessehouwing
opened
7 years ago
6
New Rule: Certificate Revocation is not validated
#80
jessehouwing
opened
7 years ago
1
New Rule: Using static Initialization Vector for encryption algorithms
#79
jessehouwing
opened
7 years ago
0
Fix analyzer HttpCookie
#78
h3xstream
closed
7 years ago
0
Visual Basic Support
#77
SJMakin
closed
7 years ago
3
HttpCookie incorrectly reports SG008/SG009 when the properties are defined in-line.
#76
SJMakin
closed
7 years ago
0
Limit Highlighting to Just the ValidateInput Attribute for SG0017
#75
kyleherzog
closed
7 years ago
2
Limit the Highlighting of Code for SG0016
#74
kyleherzog
closed
7 years ago
2
Password validator analyzer
#73
fprairie
closed
7 years ago
0
change Count() with Any() and Count as property
#72
agametov
closed
7 years ago
1
Make sure tests snippets actually compile
#71
JarLob
closed
7 years ago
1
Make sure tests snippets actually compile.
#70
JarLob
closed
7 years ago
0
Path traversal false positives
#69
JarLob
closed
7 years ago
2
OutputCache false positives fixes
#68
JarLob
closed
7 years ago
4
GetValueByIdentifier was returning zeroed structure
#67
JarLob
closed
7 years ago
2
Implementation of the PasswordValidator's limit on the RequiredLength
#66
fprairie
closed
7 years ago
2
Your Taint analyzer doesn't sniff for nulls
#65
WillSullivan
opened
7 years ago
2
Remove {0} on the documentation website
#64
h3xstream
closed
7 years ago
0
Refactoring Folder Structure
#63
h3xstream
closed
7 years ago
1
Support for VS 2017 and NPE fix
#62
h3xstream
closed
7 years ago
0
VB.NET support
#61
SJMakin
closed
7 years ago
4
SG0016 (CSRF) is displayed even for method not bound to a view
#60
xperiandri
opened
7 years ago
9
Typo in rule SG0017 description
#59
obilodeau
closed
7 years ago
1
Support for String.Format() and generalization of taint transfer.
#58
h3xstream
closed
7 years ago
0
Taint Analysis : Support String.Format()
#57
h3xstream
closed
7 years ago
0
Descriptions + VSIX update
#56
h3xstream
closed
7 years ago
0
Visual Studio 2017 support
#55
suttonandy
closed
7 years ago
7
Next