Silenced Warnings #231
mephistolistAnnotations
10 warnings
|
src/create.c:62:5 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/create.c#L62
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/create.c:76:5 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/create.c#L76
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/create.c:103:5 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/create.c#L103
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/install.c:1:9 [bugprone-reserved-identifier]:
src/install.c#L1
declaration uses identifier '_GNU_SOURCE', which is a reserved identifier
|
|
src/install.c:43:5 [readability-function-cognitive-complexity]:
src/install.c#L43
function 'f_install_package_source' has cognitive complexity of 57 (threshold 25)
|
|
src/install.c:116:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/install.c#L116
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/install.c:122:9 [clang-analyzer-unix.Malloc]:
src/install.c#L122
Potential leak of memory pointed to by 'env_path'
|
|
src/install.c:126:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/install.c#L126
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
src/install.c:128:15 [cppcoreguidelines-init-variables]:
src/install.c#L128
variable 'env_file' is not initialized
|
|
src/install.c:129:18 [clang-analyzer-unix.Malloc]:
src/install.c#L129
Potential leak of memory pointed to by 'env_path'
|