Infer# is an interprocedural and scalable static code analyzer for C#. Via the capabilities of Facebook's Infer, this tool detects null dereferences, resource leaks, and thread-safety violations. It also performs taint flow tracking to detect critical security vulnerabilities like SQL injections.
MIT License
730
stars
29
forks
source link
Resources Returned By Create Not Tracked By Leak Checker #120
XmlReader reader = XmlReader.Create(new StringReader("")); XmlReader reader2 = new XmlTextReader(new StringReader(""));
Analysis reports on reader2 but not reader.