Infer# is an interprocedural and scalable static code analyzer for C#. Via the capabilities of Facebook's Infer, this tool detects null dereferences, resource leaks, and thread-safety violations. It also performs taint flow tracking to detect critical security vulnerabilities like SQL injections.
MIT License
732
stars
29
forks
source link
Add optional sarif parameter to be passed into infer #78
Tested this by pulling sarif-enabled infer branch, docker build, and verifying that running with the sarif option produces a report.sarif file in the output, while running without the option omits the sarif report.
Tested this by pulling sarif-enabled infer branch, docker build, and verifying that running with the sarif option produces a
report.sarif
file in the output, while running without the option omits the sarif report.