Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/libstring-approx-perl-3.28/apse.c
Examining data/libstring-approx-perl-3.28/apse.h

FINAL RESULTS:

data/libstring-approx-perl-3.28/apse.c:138:12:  [2] (buffer) char:
  Statically-sized arrays can be improperly restricted, leading to potential
  overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
  functions that limit length, or ensure that the size is larger than the
  maximum possible length.
    static char s[APSE_BITS_IN_BITVEC + 1] = { 0 }; /* non-reentrant */
data/libstring-approx-perl-3.28/apse.c:146:12:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	    (void)memcpy(s + i, b + ((v & 0x0f) << 2), (size_t)4);
data/libstring-approx-perl-3.28/apse.c:577:2:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	memcpy(ap->fold_mask,
data/libstring-approx-perl-3.28/apse.c:1008:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	(void)memcpy(ap->prev_state, ap->state, ap->bytes_in_all_states);
data/libstring-approx-perl-3.28/apse.c:1055:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	(void)memcpy(ap->prev_state, ap->state,
data/libstring-approx-perl-3.28/apse.c:1098:8:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	(void)memcpy(ap->prev_state, ap->state,
data/libstring-approx-perl-3.28/apse.c:1232:12:  [2] (buffer) memcpy:
  Does not check for buffer overflows when copying to destination (CWE-120).
  Make sure destination can always hold the source data.
	    (void)memcpy(ap->prev_state, ap->state,
data/libstring-approx-perl-3.28/apse.c:920:44:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
	    printf("(equal = %d, active = %d)\n", equal, active);
data/libstring-approx-perl-3.28/apse.c:925:4:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
		(equal < ap->prev_equal &&
data/libstring-approx-perl-3.28/apse.c:940:24:  [1] (buffer) equal:
  Function does not check the second iterator for over-read conditions
  (CWE-126). This function is often discouraged by most C++ coding standards
  in favor of its safer alternatives provided since C++14. Consider using a
  form of this function that checks the second iterator before potentially
  overflowing it.
	    ap->prev_equal  = equal;

ANALYSIS SUMMARY:

Hits = 10
Lines analyzed = 1710 in approximately 0.06 seconds (26583 lines/second)
Physical Source Lines of Code (SLOC) = 1338
Hits@level = [0]  53 [1]   3 [2]   7 [3]   0 [4]   0 [5]   0
Hits@level+ = [0+]  63 [1+]  10 [2+]   7 [3+]   0 [4+]   0 [5+]   0
Hits/KSLOC@level+ = [0+] 47.0852 [1+] 7.47384 [2+] 5.23169 [3+]   0 [4+]   0 [5+]   0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.