Merge pull request #120 from mephistolist/main #226
AleksArt000Annotations
1 error and 10 warnings
|
src/download.c:6:10 [clang-diagnostic-error]:
src/download.c#L6
'curl/curl.h' file not found
|
|
src/make.c:26:5 [readability-function-cognitive-complexity]:
src/make.c#L26
function 'make' has cognitive complexity of 37 (threshold 25)
|
|
src/make.c:31:11 [cppcoreguidelines-init-variables]:
src/make.c#L31
variable 'cmd_params' is not initialized
|
|
src/make.c:66:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/make.c#L66
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/make.c:67:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/make.c#L67
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/make.c:68:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/make.c#L68
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/make.c:102:19 [cppcoreguidelines-init-variables]:
src/make.c#L102
variable 'ptr' is not initialized
|
|
src/make.c:122:17 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/make.c#L122
Call to function 'sprintf' is insecure as it does not provide security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/make.c:123:17 [clang-analyzer-security.insecureAPI.strcpy]:
src/make.c#L123
Call to function 'strcat' is insecure as it does not provide bounding of the memory buffer. Replace unbounded copy functions with analogous functions that support length arguments such as 'strlcat'. CWE-119
|
|
src/make.c:154:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/make.c#L154
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/make.c:168:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/make.c#L168
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|