Merge pull request #40 from AleksArt000/main #58
ilovethensaAnnotations
10 warnings
|
/src/install.c:1:9 [bugprone-reserved-identifier]:
src/install.c#L1
declaration uses identifier '_GNU_SOURCE', which is a reserved identifier
|
|
/src/install.c:87:5 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/install.c#L87
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
/src/install.c:131:5 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/install.c#L131
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
/src/install.c:194:16 [clang-analyzer-unix.MallocSizeof]:
src/install.c#L194
Result of 'calloc' is converted to a pointer of type 'char', which is incompatible with sizeof operand type 'const char *'
|
|
/src/install.c:198:9 [clang-analyzer-unix.Malloc]:
src/install.c#L198
Potential leak of memory pointed to by 'pkg.name'
|
|
/src/install.c:203:56 [readability-braces-around-statements]:
src/install.c#L203
statement should be inside braces
|
|
/src/install.c:208:5 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/install.c#L208
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
/src/install.c:234:5 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/install.c#L234
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|
|
/src/install.c:267:12 [cppcoreguidelines-init-variables]:
src/install.c#L267
variable 'FORMATS' is not initialized
|
|
/src/install.c:273:9 [clang-analyzer-security.insecureAPI.DeprecatedOrUnsafeBufferHandling]:
src/install.c#L273
Call to function 'sprintf' is insecure as it does not provide bounding of the memory buffer or security checks introduced in the C11 standard. Replace with analogous functions that support length arguments or provides boundary checks such as 'sprintf_s' in case of C11
|