├── README.md ├── Summary of static analysis in C & C++ ├── README.md ├── checkingRules │ ├── error_IOWithoutPositioning_CWE664.md │ ├── error_arrayIndexOutOfBounds_CWE119.md │ ├── error_assignBoolToPointer_CWE587.md │ ├── error_autoVariables_CWE562.md │ ├── error_autovarInvalidDeallocation_CWE590.md │ ├── error_boostForeachError_CWE664.md │ ├── error_bufferAccessOutOfBounds_CWE788.md │ ├── error_coutCerrMisusage_CWE398.md │ ├── error_deallocDealloc_CWE415.md │ ├── error_deallocret_CWE672.md │ ├── error_deallocuse_CWE416.md │ ├── error_doubleFree_CWE415.md │ ├── error_eraseDereference_CWE664.md │ ├── error_floatConversionOverflow_CWE190.md │ ├── error_insecureCmdLineArgs_CWE119.md │ ├── error_integerOverflow_CWE190.md │ ├── error_invalidFunctionArgBool_CWE628.md │ ├── error_invalidFunctionArg_CWE628.md │ ├── error_invalidIterator1_CWE664.md │ ├── error_invalidIterator2_CWE664.md │ ├── error_invalidScanfFormatWidth_CWE687.md │ ├── error_leakNoVarFunctionCall_CWE772.md │ ├── error_leakReturnValNotUsed_CWE771.md │ ├── error_mallocOnClassError_CWE665.md │ ├── error_memleakOnRealloc_CWE401.md │ ├── error_memleak_CWE401.md │ ├── error_memsetClassReference_CWE665.md │ ├── error_mismatchAllocDealloc_CWE762.md │ ├── error_mismatchSize_CWE131.md │ ├── error_negativeArraySize_CWE758.md │ ├── error_negativeIndex_CWE786.md │ ├── error_negativeMemoryAllocationSize_CWE131.md │ ├── error_operatorEqMissingReturnStatement_CWE398.md │ ├── error_pointerArithBool_CWE571.md │ ├── error_raceAfterInterlockedDecrement_CWE362.md │ ├── error_readWriteOnlyFile_CWE664.md │ ├── error_resourceLeak_CWE775.md │ ├── error_returnAddressOfAutoVariable_CWE562.md │ ├── error_returnAddressOfFunctionParameter_CWE562.md │ ├── error_returnLocalVariable_CWE562.md │ ├── error_returnReference_CWE562.md │ ├── error_returnTempReference_CWE562.md │ ├── error_selfInitialization_CWE665.md │ ├── error_shiftNegative_CWE758.md │ ├── error_shiftTooManyBitsSigned_CWE758.md │ ├── error_shiftTooManyBits_CWE758.md │ ├── error_sprintfOverlappingData_CWE628.md │ ├── error_stlBoundaries_CWE664.md │ ├── error_stlOutOfBounds_CWE788.md │ ├── error_stlcstr_CWE664.md │ ├── error_strPlusChar_CWE665.md │ ├── error_stringLiteralWrite_CWE758.md │ ├── error_strncatUsage_CWE119.md │ ├── error_uninitStructMember_CWE908.md │ ├── error_uninitdata_CWE908.md │ ├── error_uninitstring_CWE676.md │ ├── error_uninitvar_CWE908.md │ ├── error_unknownEvaluationOrder_CWE768.md │ ├── error_useAutoPointerArray_CWE664.md │ ├── error_useAutoPointerContainer_CWE664.md │ ├── error_useAutoPointerMalloc_CWE762.md │ ├── error_useClosedFile_CWE910.md │ ├── error_va_end_missing_CWE664.md │ ├── error_va_list_usedBeforeStarted_CWE664.md │ ├── error_va_start_referencePassed_CWE758.md │ ├── error_va_start_subsequentCalls_CWE664.md │ ├── error_virtualDestructor_CWE404.md │ ├── error_writeReadOnlyFile_CWE664.md │ ├── error_wrongPipeParameterSize_CWE686.md │ ├── error_wrongPrintfScanfArgNum_CWE685.md │ ├── error_zerodiv_CWE369.md │ ├── error_zerodivcond_CWE369.md │ ├── information_missingInclude.md │ ├── information_missingIncludeSystem.md │ ├── performance_postfixOperator_CWE398.md │ ├── performance_stlcstrParam_CWE704.md │ ├── performance_stlcstrReturn_CWE704.md │ ├── portability_AssignmentAddressToInteger_CWE758.md │ ├── portability_AssignmentIntegerToAddress_CWE758.md │ ├── portability_CastAddressToIntegerAtReturn_CWE758.md │ ├── portability_CastIntegerToAddressAtReturn_CWE758.md │ ├── portability_invalidPrintfArgType_sint_CWE686.md │ ├── portability_memsetClassFloat_CWE758.md │ ├── portability_memsetFloat_CWE668.md │ ├── portability_shiftNegativeLHS_CWE758.md │ ├── style_asctimeCalled_CWE477.md │ ├── style_assignBoolToFloat_CWE704.md │ ├── style_cstyleCast_CWE398.md │ ├── style_duplicateBreak_CWE561.md │ ├── style_duplicateExpression_CWE398.md │ ├── style_getsCalled_CWE477.md │ ├── style_knownConditionTrueFalse_CWE570.md │ ├── style_noConstructor_CWE398.md │ ├── style_noCopyConstructor_CWE398.md │ ├── style_noExplicitConstructor_CWE398.md │ ├── style_publicAllocationError_CWE398.md │ ├── style_redundantAssignment_CWE563.md │ ├── style_unassignedVariable_CWE665.md │ ├── style_unreachableCode_CWE561.md │ ├── style_unreadVariable_CWE563.md │ ├── style_unusedAllocatedMemory_CWE563.md │ ├── style_unusedFunction_CWE561.md │ ├── style_unusedPrivateFunction_CWE398.md │ ├── style_unusedScopedObject_CWE563.md │ ├── style_unusedStructMember_CWE563.md │ ├── style_unusedVariable_CWE563.md │ ├── style_useAutoPointerCopy_CWE398.md │ ├── style_uselessAssignmentArg_CWE398.md │ ├── syntaxError.md │ ├── warning_compareBoolExpressionWithInt_CWE398.md │ ├── warning_constStatement_CWE398.md │ ├── warning_duplInheritedMember_CWE398.md │ ├── warning_exceptThrowInDestructor_CWE398.md │ ├── warning_ignoredReturnValue_CWE252.md │ ├── warning_invalidScanf_CWE687.md │ ├── warning_nullPointerRedundantCheck_CWE476.md │ ├── warning_nullPointer_CWE476.md │ ├── warning_selfAssignment_CWE398.md │ ├── warning_sizeofCalculation_CWE682.md │ ├── warning_uninitMemberVar_CWE398.md │ └── warning_uselessAssignmentPtrArg_CWE398.md ├── script │ ├── ALL2CSV.py │ ├── Clog.txt │ ├── CppcheckXML2CSV.py │ ├── GetList.py │ ├── Walk_dir.py │ ├── auto_infer_run.py │ ├── changeFileContext.py │ ├── cppcheck.bat │ ├── cppcheck_auto.py │ ├── cppcheck_xml.bat │ ├── cppcheck_xmlonlyerror.bat │ └── generate_bat.py └── subpage │ └── List of Rules.md └── Summary of static analysis in JAVA ├── README.md ├── find-sec-bugs ├── collection │ └── rules_index.md ├── find-sec-bugs rules │ ├── AWS_Query_Injection(CWE-943).md │ ├── A_malicious_XSLT_could_be_provided(JSP).md │ ├── A_malicious_XSLT_could_be_provided.md │ ├── Anonymous_LDAP_bind.md │ ├── Bad_hexadecimal_concatention(CWE-704).md │ ├── Blowfish_usage_with_short_key(CWE-326).md │ ├── Broadcast (Android)(CWE-925,CWE-927).md │ ├── CUSTOM_INJECTION(CWE-89).md │ ├── Cipher_is_susceptible_to_Padding_Oracle(CWE-696).md │ ├── Cipher_with_no_integrity(CWE-353).md │ ├── Cookie_without_the_HttpOnly_flag.md │ ├── Cookie_without_the_secure_flag(CWE-614,CWE-315,CWE-311).md │ ├── DES_is_insecure(CWE-326).md │ ├── DESede_is_insecure(CWE-326).md │ ├── Dynamic_JSP_inclusion.md │ ├── Dynamic_variable_in_Spring_expression(CWE-94,CEW-95).md │ ├── ECB_mode_is_insecure.md │ ├── Escaping_of_special_XML_characters_is_disabled(CWE-79).md │ ├── External_file_access(Android)(CWE-312).md │ ├── FilenameUtils_not_filtering_null_bytes(CWE-78).md │ ├── Format_String_Manipulation(CWE-134).md │ ├── Found_JAX-WS_SOAP_endpoint(CWE-20).md │ ├── Found_Tapestry_page(CWE-20).md │ ├── HTTP_Parameter_Pollution.md │ ├── Hard_Coded_Key(CWE-321).md │ ├── Hard_Coded_Password(CWE-259).md │ ├── Hazelcast_symmetric_encryption(CWE-326).md │ ├── HostnameVerifier_that_accept_any_signed_certificates(CWE-295).md │ ├── Information_Exposure_Through_An_Error_Message(CWE- │ ├── Insecure_SMTP_SSL_connection(CWE-297).md │ ├── JavaBeans_Property_Injection(CWE-15).md │ ├── LDAP_Entry_Poisoning.md │ ├── MD2_MD4_and MD5_are_weak_hash_functions(CWE-327).md │ ├── Message_digest_is_custom(CWE-327).md │ ├── NullCipher_is_insecure(CWE-327).md │ ├── Object_deserialization_is_used(CWE-502).md │ ├── Overly_permissive_CORS_policy.md │ ├── Persistent_Cookie_Usage(CWE-539).md │ ├── Potential_Android_SQL_Injection(CWE-89).md │ ├── Potential_CRLF_Injection_for_logs(CWE-117,CWE-93).md │ ├── Potential_Command_Injection(CWE-78).md │ ├── Potential_HTTP_Response_Splitting(CWE-113,CWE-93).md │ ├── Potential_JDBC_Injection(CWE-89).md │ ├── Potential_LDAP_Injection(CWE-90).md │ ├── Potential_Path_Traversal(file_read)(CWE-22).md │ ├── Potential_Path_Traversal_(file_write)(CWE-22).md │ ├── Potential_SQL_HQL_Injection(Hibernate)(CWE-89).md │ ├── Potential_SQL_Injection(CWE-89).md │ ├── Potential_SQL_Injection_with_Turbine(CWE-89).md │ ├── Potential_SQL_JDOQL_Injection(JDO)(CWE-89).md │ ├── Potential_XSS_in_JSP(CWE-79).md │ ├── Potential_XSS_in_Scala_MVC_API_engine(CWE-79).md │ ├── Potential_XSS_in_Scala_Twirl_template_engine(CWE-7 │ ├── Potential_XSS_in_Servlet(CWE-79).md │ ├── Potential_code_injection_in_Seam_logging_call(cwe-94).md │ ├── Potential_code_injection_when_using_OGNL_expression.md │ ├── Potential_code_injection_when_using_Script_Engine(CWE-94,CWE-95).md │ ├── Potential_external_control_of_configuration(CWE-15).md │ ├── Potential_information_leakage_in_Scala_Play(CWE-200).md │ ├── Potential_template_injection_with_Freemarker.md │ ├── Potential_template_injection_with_Velocity.md │ ├── Potentially_sensitive_data_in_cookie(CWE-315).md │ ├── Predictable_pseudorandom_number_generator(CWE-330).md │ ├── RSA_usage_with_short_key(CWE-326).md │ ├── RSA_with_no_padding_is_insecure(CWE-780).md │ ├── Regex_DOS(ReDOS)(CWE-400).md │ ├── RequestDispatcher_File_Disclosure(CWE-552).md │ ├── SHA-1_is_a_weak_hash_function(CWE-327).md │ ├── SMPT_Header_Injection.md │ ├── Scala_Play_Server-Side_Request_Forgery (SSRF).md │ ├── Spring_CSRF_protection_disabled(CWE-352).md │ ├── Spring_CSRF_unrestricted_RequestMapping(CWE-352).md │ ├── Spring_File_Disclosure(CWE-552).md │ ├── Spring_Unvalidated_Redirect(CWE-601).md │ ├── Static_IV(CWE-329).md │ ├── Struts_File_Disclosure(CWE-552).md │ ├── Struts_Form_without_input_validation(CWE-20,CWE-106).md │ ├── Tainted_filename_read(CWE-22).md │ ├── This_class_could_be_used_as_deserialization_gadget │ ├── TrustManager_that_accept_any_certificates(CWE-295).md │ ├── Trust_Boundary_Violation(CWE-501).md │ ├── URLConnection_Server-Side_Request_Forgery (SSRF)_and_File_Disclosure(CWE-918,CWE-73).md │ ├── URL_rewriting_method.md │ ├── Unencrypted_Server_Socket(CWE-319).md │ ├── Unencrypted_Socket(CWE-319).md │ ├── Unsafe_Jackson_deserialization_configuration.md │ ├── Unsafe_hash_equals(CWE-203).md │ ├── Untrusted_Content-Type_header(CWE-807).md │ ├── Untrusted_Hostname_header(CWE-807).md │ ├── Untrusted_User-Agent_header(CWE-807).md │ ├── Untrusted_query_string(CWE-20).md │ ├── Untrusted_servlet_parameter(CWE-20).md │ ├── Untrusted_session_cookie_value(CWE-20).md │ ├── Unvalidated_Redirect (Play Framework)(CWE-601).md │ ├── Unvalidated_Redirect(CWE-601).md │ ├── Use_of_ESAPI_Encryptor(CWE-310).md │ ├── Weak_SSLContext.md │ ├── WebView_with_JavaScript_enabled (Android)(CWE-79).md │ ├── WebView_with_JavaScript_interface_(Android)(CWE-749).md │ ├── WebView_with_geolocation_activated_(Android).md │ ├── World_writable_file_(Android)(CWE-312).md │ ├── XMLDecoder_usage(CWE-20).md │ ├── XSSRequestWrapper_is_a_weak_XSS_protection(CWE-79).md │ └── defaultHttpClient_with_default_constructor_is_not_compatible_with_TLS1.2.md └── rules.md ├── findbugs ├── FindBugs规则整理.docx ├── Findbugs自定义rulesets.pdf ├── findbugs-rules.docx ├── findbugs-rules汇总.xlsx └── readme.md └── pmd ├── Eclipse-PMD插件分析代码规则(中文).xls ├── PMD使用说明及规则.pdf ├── PMD规则翻译合集.pdf ├── pmd使用说明.doc ├── 静态代码扫描 (一)——PMD 自定义规则入门.pdf └── 静态代码扫描 (二)——PMD 自定义规则实践.pdf /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/README.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/README.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_IOWithoutPositioning_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_IOWithoutPositioning_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_arrayIndexOutOfBounds_CWE119.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_arrayIndexOutOfBounds_CWE119.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_assignBoolToPointer_CWE587.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_assignBoolToPointer_CWE587.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_autoVariables_CWE562.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_autoVariables_CWE562.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_autovarInvalidDeallocation_CWE590.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_autovarInvalidDeallocation_CWE590.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_boostForeachError_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_boostForeachError_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_bufferAccessOutOfBounds_CWE788.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_bufferAccessOutOfBounds_CWE788.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_coutCerrMisusage_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_coutCerrMisusage_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_deallocDealloc_CWE415.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_deallocDealloc_CWE415.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_deallocret_CWE672.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_deallocret_CWE672.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_deallocuse_CWE416.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_deallocuse_CWE416.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_doubleFree_CWE415.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_doubleFree_CWE415.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_eraseDereference_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_eraseDereference_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_floatConversionOverflow_CWE190.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_floatConversionOverflow_CWE190.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_insecureCmdLineArgs_CWE119.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_insecureCmdLineArgs_CWE119.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_integerOverflow_CWE190.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_integerOverflow_CWE190.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_invalidFunctionArgBool_CWE628.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_invalidFunctionArgBool_CWE628.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_invalidFunctionArg_CWE628.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_invalidFunctionArg_CWE628.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_invalidIterator1_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_invalidIterator1_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_invalidIterator2_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_invalidIterator2_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_invalidScanfFormatWidth_CWE687.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_invalidScanfFormatWidth_CWE687.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_leakNoVarFunctionCall_CWE772.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_leakNoVarFunctionCall_CWE772.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_leakReturnValNotUsed_CWE771.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_leakReturnValNotUsed_CWE771.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_mallocOnClassError_CWE665.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_mallocOnClassError_CWE665.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_memleakOnRealloc_CWE401.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_memleakOnRealloc_CWE401.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_memleak_CWE401.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_memleak_CWE401.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_memsetClassReference_CWE665.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_memsetClassReference_CWE665.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_mismatchAllocDealloc_CWE762.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_mismatchAllocDealloc_CWE762.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_mismatchSize_CWE131.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_mismatchSize_CWE131.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_negativeArraySize_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_negativeArraySize_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_negativeIndex_CWE786.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_negativeIndex_CWE786.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_negativeMemoryAllocationSize_CWE131.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_negativeMemoryAllocationSize_CWE131.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_operatorEqMissingReturnStatement_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_operatorEqMissingReturnStatement_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_pointerArithBool_CWE571.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_pointerArithBool_CWE571.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_raceAfterInterlockedDecrement_CWE362.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_raceAfterInterlockedDecrement_CWE362.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_readWriteOnlyFile_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_readWriteOnlyFile_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_resourceLeak_CWE775.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_resourceLeak_CWE775.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_returnAddressOfAutoVariable_CWE562.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_returnAddressOfAutoVariable_CWE562.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_returnAddressOfFunctionParameter_CWE562.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_returnAddressOfFunctionParameter_CWE562.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_returnLocalVariable_CWE562.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_returnLocalVariable_CWE562.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_returnReference_CWE562.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_returnReference_CWE562.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_returnTempReference_CWE562.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_returnTempReference_CWE562.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_selfInitialization_CWE665.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_selfInitialization_CWE665.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_shiftNegative_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_shiftNegative_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_shiftTooManyBitsSigned_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_shiftTooManyBitsSigned_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_shiftTooManyBits_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_shiftTooManyBits_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_sprintfOverlappingData_CWE628.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_sprintfOverlappingData_CWE628.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_stlBoundaries_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_stlBoundaries_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_stlOutOfBounds_CWE788.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_stlOutOfBounds_CWE788.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_stlcstr_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_stlcstr_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_strPlusChar_CWE665.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_strPlusChar_CWE665.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_stringLiteralWrite_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_stringLiteralWrite_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_strncatUsage_CWE119.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_strncatUsage_CWE119.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_uninitStructMember_CWE908.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_uninitStructMember_CWE908.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_uninitdata_CWE908.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_uninitdata_CWE908.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_uninitstring_CWE676.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_uninitstring_CWE676.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_uninitvar_CWE908.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_uninitvar_CWE908.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_unknownEvaluationOrder_CWE768.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_unknownEvaluationOrder_CWE768.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_useAutoPointerArray_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_useAutoPointerArray_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_useAutoPointerContainer_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_useAutoPointerContainer_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_useAutoPointerMalloc_CWE762.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_useAutoPointerMalloc_CWE762.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_useClosedFile_CWE910.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_useClosedFile_CWE910.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_va_end_missing_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_va_end_missing_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_va_list_usedBeforeStarted_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_va_list_usedBeforeStarted_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_va_start_referencePassed_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_va_start_referencePassed_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_va_start_subsequentCalls_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_va_start_subsequentCalls_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_virtualDestructor_CWE404.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_virtualDestructor_CWE404.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_writeReadOnlyFile_CWE664.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_writeReadOnlyFile_CWE664.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_wrongPipeParameterSize_CWE686.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_wrongPipeParameterSize_CWE686.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_wrongPrintfScanfArgNum_CWE685.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_wrongPrintfScanfArgNum_CWE685.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_zerodiv_CWE369.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_zerodiv_CWE369.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/error_zerodivcond_CWE369.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/error_zerodivcond_CWE369.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/information_missingInclude.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/information_missingInclude.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/information_missingIncludeSystem.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/information_missingIncludeSystem.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/performance_postfixOperator_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/performance_postfixOperator_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/performance_stlcstrParam_CWE704.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/performance_stlcstrParam_CWE704.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/performance_stlcstrReturn_CWE704.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/performance_stlcstrReturn_CWE704.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/portability_AssignmentAddressToInteger_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/portability_AssignmentAddressToInteger_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/portability_AssignmentIntegerToAddress_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/portability_AssignmentIntegerToAddress_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/portability_CastAddressToIntegerAtReturn_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/portability_CastAddressToIntegerAtReturn_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/portability_CastIntegerToAddressAtReturn_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/portability_CastIntegerToAddressAtReturn_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/portability_invalidPrintfArgType_sint_CWE686.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/portability_invalidPrintfArgType_sint_CWE686.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/portability_memsetClassFloat_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/portability_memsetClassFloat_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/portability_memsetFloat_CWE668.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/portability_memsetFloat_CWE668.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/portability_shiftNegativeLHS_CWE758.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/portability_shiftNegativeLHS_CWE758.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_asctimeCalled_CWE477.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_asctimeCalled_CWE477.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_assignBoolToFloat_CWE704.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_assignBoolToFloat_CWE704.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_cstyleCast_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_cstyleCast_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_duplicateBreak_CWE561.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_duplicateBreak_CWE561.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_duplicateExpression_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_duplicateExpression_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_getsCalled_CWE477.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_getsCalled_CWE477.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_knownConditionTrueFalse_CWE570.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_knownConditionTrueFalse_CWE570.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_noConstructor_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_noConstructor_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_noCopyConstructor_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_noCopyConstructor_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_noExplicitConstructor_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_noExplicitConstructor_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_publicAllocationError_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_publicAllocationError_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_redundantAssignment_CWE563.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_redundantAssignment_CWE563.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unassignedVariable_CWE665.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unassignedVariable_CWE665.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unreachableCode_CWE561.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unreachableCode_CWE561.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unreadVariable_CWE563.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unreadVariable_CWE563.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unusedAllocatedMemory_CWE563.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unusedAllocatedMemory_CWE563.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unusedFunction_CWE561.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unusedFunction_CWE561.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unusedPrivateFunction_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unusedPrivateFunction_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unusedScopedObject_CWE563.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unusedScopedObject_CWE563.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unusedStructMember_CWE563.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unusedStructMember_CWE563.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_unusedVariable_CWE563.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_unusedVariable_CWE563.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_useAutoPointerCopy_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_useAutoPointerCopy_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/style_uselessAssignmentArg_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/style_uselessAssignmentArg_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/syntaxError.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/syntaxError.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_compareBoolExpressionWithInt_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_compareBoolExpressionWithInt_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_constStatement_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_constStatement_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_duplInheritedMember_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_duplInheritedMember_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_exceptThrowInDestructor_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_exceptThrowInDestructor_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_ignoredReturnValue_CWE252.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_ignoredReturnValue_CWE252.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_invalidScanf_CWE687.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_invalidScanf_CWE687.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_nullPointerRedundantCheck_CWE476.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_nullPointerRedundantCheck_CWE476.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_nullPointer_CWE476.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_nullPointer_CWE476.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_selfAssignment_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_selfAssignment_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_sizeofCalculation_CWE682.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_sizeofCalculation_CWE682.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_uninitMemberVar_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_uninitMemberVar_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/checkingRules/warning_uselessAssignmentPtrArg_CWE398.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/checkingRules/warning_uselessAssignmentPtrArg_CWE398.md -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/ALL2CSV.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/ALL2CSV.py -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/Clog.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/Clog.txt -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/CppcheckXML2CSV.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/CppcheckXML2CSV.py -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/GetList.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/GetList.py -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/Walk_dir.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/Walk_dir.py -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/auto_infer_run.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/auto_infer_run.py -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/changeFileContext.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/changeFileContext.py -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/cppcheck.bat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/cppcheck.bat -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/cppcheck_auto.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/cppcheck_auto.py -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/cppcheck_xml.bat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/cppcheck_xml.bat -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/cppcheck_xmlonlyerror.bat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/cppcheck_xmlonlyerror.bat -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/script/generate_bat.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/script/generate_bat.py -------------------------------------------------------------------------------- /Summary of static analysis in C & C++/subpage/List of Rules.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in C & C++/subpage/List of Rules.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/README.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/collection/rules_index.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/collection/rules_index.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/AWS_Query_Injection(CWE-943).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/AWS_Query_Injection(CWE-943).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/A_malicious_XSLT_could_be_provided(JSP).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/A_malicious_XSLT_could_be_provided(JSP).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/A_malicious_XSLT_could_be_provided.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/A_malicious_XSLT_could_be_provided.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Anonymous_LDAP_bind.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Anonymous_LDAP_bind.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Bad_hexadecimal_concatention(CWE-704).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Bad_hexadecimal_concatention(CWE-704).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Blowfish_usage_with_short_key(CWE-326).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Blowfish_usage_with_short_key(CWE-326).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Broadcast (Android)(CWE-925,CWE-927).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Broadcast (Android)(CWE-925,CWE-927).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/CUSTOM_INJECTION(CWE-89).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/CUSTOM_INJECTION(CWE-89).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Cipher_is_susceptible_to_Padding_Oracle(CWE-696).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Cipher_is_susceptible_to_Padding_Oracle(CWE-696).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Cipher_with_no_integrity(CWE-353).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Cipher_with_no_integrity(CWE-353).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Cookie_without_the_HttpOnly_flag.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Cookie_without_the_HttpOnly_flag.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Cookie_without_the_secure_flag(CWE-614,CWE-315,CWE-311).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Cookie_without_the_secure_flag(CWE-614,CWE-315,CWE-311).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/DES_is_insecure(CWE-326).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/DES_is_insecure(CWE-326).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/DESede_is_insecure(CWE-326).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/DESede_is_insecure(CWE-326).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Dynamic_JSP_inclusion.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Dynamic_JSP_inclusion.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Dynamic_variable_in_Spring_expression(CWE-94,CEW-95).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Dynamic_variable_in_Spring_expression(CWE-94,CEW-95).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/ECB_mode_is_insecure.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/ECB_mode_is_insecure.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Escaping_of_special_XML_characters_is_disabled(CWE-79).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Escaping_of_special_XML_characters_is_disabled(CWE-79).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/External_file_access(Android)(CWE-312).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/External_file_access(Android)(CWE-312).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/FilenameUtils_not_filtering_null_bytes(CWE-78).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/FilenameUtils_not_filtering_null_bytes(CWE-78).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Format_String_Manipulation(CWE-134).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Format_String_Manipulation(CWE-134).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Found_JAX-WS_SOAP_endpoint(CWE-20).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Found_JAX-WS_SOAP_endpoint(CWE-20).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Found_Tapestry_page(CWE-20).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Found_Tapestry_page(CWE-20).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/HTTP_Parameter_Pollution.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/HTTP_Parameter_Pollution.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Hard_Coded_Key(CWE-321).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Hard_Coded_Key(CWE-321).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Hard_Coded_Password(CWE-259).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Hard_Coded_Password(CWE-259).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Hazelcast_symmetric_encryption(CWE-326).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Hazelcast_symmetric_encryption(CWE-326).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/HostnameVerifier_that_accept_any_signed_certificates(CWE-295).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/HostnameVerifier_that_accept_any_signed_certificates(CWE-295).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Information_Exposure_Through_An_Error_Message(CWE-: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Information_Exposure_Through_An_Error_Message(CWE- -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Insecure_SMTP_SSL_connection(CWE-297).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Insecure_SMTP_SSL_connection(CWE-297).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/JavaBeans_Property_Injection(CWE-15).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/JavaBeans_Property_Injection(CWE-15).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/LDAP_Entry_Poisoning.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/LDAP_Entry_Poisoning.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/MD2_MD4_and MD5_are_weak_hash_functions(CWE-327).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/MD2_MD4_and MD5_are_weak_hash_functions(CWE-327).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Message_digest_is_custom(CWE-327).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Message_digest_is_custom(CWE-327).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/NullCipher_is_insecure(CWE-327).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/NullCipher_is_insecure(CWE-327).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Object_deserialization_is_used(CWE-502).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Object_deserialization_is_used(CWE-502).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Overly_permissive_CORS_policy.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Overly_permissive_CORS_policy.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Persistent_Cookie_Usage(CWE-539).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Persistent_Cookie_Usage(CWE-539).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_Android_SQL_Injection(CWE-89).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_Android_SQL_Injection(CWE-89).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_CRLF_Injection_for_logs(CWE-117,CWE-93).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_CRLF_Injection_for_logs(CWE-117,CWE-93).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_Command_Injection(CWE-78).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_Command_Injection(CWE-78).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_HTTP_Response_Splitting(CWE-113,CWE-93).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_HTTP_Response_Splitting(CWE-113,CWE-93).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_JDBC_Injection(CWE-89).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_JDBC_Injection(CWE-89).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_LDAP_Injection(CWE-90).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_LDAP_Injection(CWE-90).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_Path_Traversal(file_read)(CWE-22).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_Path_Traversal(file_read)(CWE-22).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_Path_Traversal_(file_write)(CWE-22).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_Path_Traversal_(file_write)(CWE-22).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_SQL_HQL_Injection(Hibernate)(CWE-89).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_SQL_HQL_Injection(Hibernate)(CWE-89).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_SQL_Injection(CWE-89).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_SQL_Injection(CWE-89).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_SQL_Injection_with_Turbine(CWE-89).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_SQL_Injection_with_Turbine(CWE-89).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_SQL_JDOQL_Injection(JDO)(CWE-89).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_SQL_JDOQL_Injection(JDO)(CWE-89).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_XSS_in_JSP(CWE-79).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_XSS_in_JSP(CWE-79).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_XSS_in_Scala_MVC_API_engine(CWE-79).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_XSS_in_Scala_MVC_API_engine(CWE-79).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_XSS_in_Scala_Twirl_template_engine(CWE-7: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_XSS_in_Scala_Twirl_template_engine(CWE-7 -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_XSS_in_Servlet(CWE-79).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_XSS_in_Servlet(CWE-79).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_code_injection_in_Seam_logging_call(cwe-94).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_code_injection_in_Seam_logging_call(cwe-94).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_code_injection_when_using_OGNL_expression.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_code_injection_when_using_OGNL_expression.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_code_injection_when_using_Script_Engine(CWE-94,CWE-95).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_code_injection_when_using_Script_Engine(CWE-94,CWE-95).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_external_control_of_configuration(CWE-15).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_external_control_of_configuration(CWE-15).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_information_leakage_in_Scala_Play(CWE-200).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_information_leakage_in_Scala_Play(CWE-200).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_template_injection_with_Freemarker.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_template_injection_with_Freemarker.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_template_injection_with_Velocity.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potential_template_injection_with_Velocity.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potentially_sensitive_data_in_cookie(CWE-315).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Potentially_sensitive_data_in_cookie(CWE-315).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Predictable_pseudorandom_number_generator(CWE-330).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Predictable_pseudorandom_number_generator(CWE-330).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/RSA_usage_with_short_key(CWE-326).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/RSA_usage_with_short_key(CWE-326).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/RSA_with_no_padding_is_insecure(CWE-780).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/RSA_with_no_padding_is_insecure(CWE-780).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Regex_DOS(ReDOS)(CWE-400).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Regex_DOS(ReDOS)(CWE-400).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/RequestDispatcher_File_Disclosure(CWE-552).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/RequestDispatcher_File_Disclosure(CWE-552).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/SHA-1_is_a_weak_hash_function(CWE-327).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/SHA-1_is_a_weak_hash_function(CWE-327).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/SMPT_Header_Injection.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/SMPT_Header_Injection.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Scala_Play_Server-Side_Request_Forgery (SSRF).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Scala_Play_Server-Side_Request_Forgery (SSRF).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Spring_CSRF_protection_disabled(CWE-352).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Spring_CSRF_protection_disabled(CWE-352).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Spring_CSRF_unrestricted_RequestMapping(CWE-352).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Spring_CSRF_unrestricted_RequestMapping(CWE-352).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Spring_File_Disclosure(CWE-552).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Spring_File_Disclosure(CWE-552).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Spring_Unvalidated_Redirect(CWE-601).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Spring_Unvalidated_Redirect(CWE-601).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Static_IV(CWE-329).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Static_IV(CWE-329).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Struts_File_Disclosure(CWE-552).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Struts_File_Disclosure(CWE-552).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Struts_Form_without_input_validation(CWE-20,CWE-106).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Struts_Form_without_input_validation(CWE-20,CWE-106).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Tainted_filename_read(CWE-22).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Tainted_filename_read(CWE-22).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/This_class_could_be_used_as_deserialization_gadget: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/This_class_could_be_used_as_deserialization_gadget -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/TrustManager_that_accept_any_certificates(CWE-295).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/TrustManager_that_accept_any_certificates(CWE-295).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Trust_Boundary_Violation(CWE-501).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Trust_Boundary_Violation(CWE-501).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/URLConnection_Server-Side_Request_Forgery (SSRF)_and_File_Disclosure(CWE-918,CWE-73).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/URLConnection_Server-Side_Request_Forgery (SSRF)_and_File_Disclosure(CWE-918,CWE-73).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/URL_rewriting_method.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/URL_rewriting_method.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unencrypted_Server_Socket(CWE-319).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unencrypted_Server_Socket(CWE-319).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unencrypted_Socket(CWE-319).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unencrypted_Socket(CWE-319).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unsafe_Jackson_deserialization_configuration.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unsafe_Jackson_deserialization_configuration.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unsafe_hash_equals(CWE-203).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unsafe_hash_equals(CWE-203).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_Content-Type_header(CWE-807).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_Content-Type_header(CWE-807).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_Hostname_header(CWE-807).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_Hostname_header(CWE-807).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_User-Agent_header(CWE-807).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_User-Agent_header(CWE-807).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_query_string(CWE-20).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_query_string(CWE-20).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_servlet_parameter(CWE-20).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_servlet_parameter(CWE-20).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_session_cookie_value(CWE-20).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Untrusted_session_cookie_value(CWE-20).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unvalidated_Redirect (Play Framework)(CWE-601).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unvalidated_Redirect (Play Framework)(CWE-601).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unvalidated_Redirect(CWE-601).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Unvalidated_Redirect(CWE-601).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Use_of_ESAPI_Encryptor(CWE-310).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Use_of_ESAPI_Encryptor(CWE-310).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Weak_SSLContext.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/Weak_SSLContext.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/WebView_with_JavaScript_enabled (Android)(CWE-79).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/WebView_with_JavaScript_enabled (Android)(CWE-79).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/WebView_with_JavaScript_interface_(Android)(CWE-749).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/WebView_with_JavaScript_interface_(Android)(CWE-749).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/WebView_with_geolocation_activated_(Android).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/WebView_with_geolocation_activated_(Android).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/World_writable_file_(Android)(CWE-312).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/World_writable_file_(Android)(CWE-312).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/XMLDecoder_usage(CWE-20).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/XMLDecoder_usage(CWE-20).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/XSSRequestWrapper_is_a_weak_XSS_protection(CWE-79).md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/XSSRequestWrapper_is_a_weak_XSS_protection(CWE-79).md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/defaultHttpClient_with_default_constructor_is_not_compatible_with_TLS1.2.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/find-sec-bugs rules/defaultHttpClient_with_default_constructor_is_not_compatible_with_TLS1.2.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/find-sec-bugs/rules.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/find-sec-bugs/rules.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/findbugs/FindBugs规则整理.docx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/findbugs/FindBugs规则整理.docx -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/findbugs/Findbugs自定义rulesets.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/findbugs/Findbugs自定义rulesets.pdf -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/findbugs/findbugs-rules.docx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/findbugs/findbugs-rules.docx -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/findbugs/findbugs-rules汇总.xlsx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/findbugs/findbugs-rules汇总.xlsx -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/findbugs/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/findbugs/readme.md -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/pmd/Eclipse-PMD插件分析代码规则(中文).xls: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/pmd/Eclipse-PMD插件分析代码规则(中文).xls -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/pmd/PMD使用说明及规则.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/pmd/PMD使用说明及规则.pdf -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/pmd/PMD规则翻译合集.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/pmd/PMD规则翻译合集.pdf -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/pmd/pmd使用说明.doc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/pmd/pmd使用说明.doc -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/pmd/静态代码扫描 (一)——PMD 自定义规则入门.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/pmd/静态代码扫描 (一)——PMD 自定义规则入门.pdf -------------------------------------------------------------------------------- /Summary of static analysis in JAVA/pmd/静态代码扫描 (二)——PMD 自定义规则实践.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/wcventure/Static-Analysis-Rules/HEAD/Summary of static analysis in JAVA/pmd/静态代码扫描 (二)——PMD 自定义规则实践.pdf --------------------------------------------------------------------------------