Skip to content

Version 0.1
Compare
Choose a tag to compare
@arktt arktt released this 16 Nov 11:16
· 22 commits to master since this release
0.1
81bfd2b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Description:

First release of SecuCheck Taint-analysis core.

Key-points:

  • Strongly typed API.
  • Intermediate analysis result listener with cancellation capability.
  • In-process and out-process analysis hosting.
  • Based on Boomerang 2.x.

Known issues:

  • False positives despite taint-flow breaking method's existence.
  • False negatives in the case of sink containing a call to a type with no source available.
Assets 2
Loading