Infer# is an interprocedural and scalable static code analyzer for C#. Via the capabilities of Facebook's Infer, this tool detects null dereferences, resource leaks, and thread-safety violations. It also performs taint flow tracking to detect critical security vulnerabilities like SQL injections.
MIT License
727
stars
29
forks
source link
Investigate False Negatives on Resource Leaks (nested resources) #129
xi-liu-ds
commented
2 years ago
Occasionally, we don't report resource leaks on resources allocated in a nested way.