Warning: While in draft state, this PR will be force pushed without notice!
The recent introduction of the taint analysis abstractions (#450) as well as further enhancements made in the context of the CWE252 check (#451) mean that the other checkers that are based on a taint analysis are not as good as they could be.
This updates the code of CWE476 to make full use of the new taint analysis backend. The main improvement is that the analysis is now interprocedural.
It also includes other enhancements to this check:
[x] use function summaries to emit more precise warnings on in-binary calls
Warning: While in draft state, this PR will be force pushed without notice!
The recent introduction of the taint analysis abstractions (#450) as well as further enhancements made in the context of the CWE252 check (#451) mean that the other checkers that are based on a taint analysis are not as good as they could be.
This updates the code of CWE476 to make full use of the new taint analysis backend. The main improvement is that the analysis is now interprocedural.
It also includes other enhancements to this check:
strict_call_policy