Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler.
Number of rules (primarily dangerous function names) in C/C++ ruleset: 223
Examining data/pygccxml-1.9.1/docs/examples/artificial/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/caching/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/compound/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/elaborated/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/equality/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/function-pointer/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/functions/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/nested-types/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/parsing/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/print-example/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/searching/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/searching1/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/templates/example.hpp
Examining data/pygccxml-1.9.1/docs/examples/variables/example.hpp
Examining data/pygccxml-1.9.1/unittests/data/abstract_classes.hpp
Examining data/pygccxml-1.9.1/unittests/data/attributes_castxml.hpp
Examining data/pygccxml-1.9.1/unittests/data/attributes_gccxml.hpp
Examining data/pygccxml-1.9.1/unittests/data/better_templates_matcher_tester.hpp
Examining data/pygccxml-1.9.1/unittests/data/binary_parsers/libconfig.h
Examining data/pygccxml-1.9.1/unittests/data/binary_parsers/mydll.cpp
Examining data/pygccxml-1.9.1/unittests/data/binary_parsers/mydll.h
Examining data/pygccxml-1.9.1/unittests/data/bit_fields.hpp
Examining data/pygccxml-1.9.1/unittests/data/classes.hpp
Examining data/pygccxml-1.9.1/unittests/data/complex_types.hpp
Examining data/pygccxml-1.9.1/unittests/data/const_volatile_arg.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_cache.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_class_hierarchy.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_diamand_hierarchy_base.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_diamand_hierarchy_derived1.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_diamand_hierarchy_derived2.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_diamand_hierarchy_final_derived.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_membership.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_ns_join_1.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_ns_join_2.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_ns_join_3.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_overloads_1.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_overloads_2.hpp
Examining data/pygccxml-1.9.1/unittests/data/core_types.hpp
Examining data/pygccxml-1.9.1/unittests/data/covariant_returns.hpp
Examining data/pygccxml-1.9.1/unittests/data/cpp_standards.hpp
Examining data/pygccxml-1.9.1/unittests/data/declaration_string.hpp
Examining data/pygccxml-1.9.1/unittests/data/declarations_calldef.hpp
Examining data/pygccxml-1.9.1/unittests/data/declarations_comparison.hpp
Examining data/pygccxml-1.9.1/unittests/data/declarations_enums.hpp
Examining data/pygccxml-1.9.1/unittests/data/declarations_for_filtering.hpp
Examining data/pygccxml-1.9.1/unittests/data/declarations_variables.hpp
Examining data/pygccxml-1.9.1/unittests/data/demangled.hpp
Examining data/pygccxml-1.9.1/unittests/data/find_noncopyable_vars.hpp
Examining data/pygccxml-1.9.1/unittests/data/free_operators.hpp
Examining data/pygccxml-1.9.1/unittests/data/has_public_binary_operator_traits.hpp
Examining data/pygccxml-1.9.1/unittests/data/include_all.hpp
Examining data/pygccxml-1.9.1/unittests/data/include_std.hpp
Examining data/pygccxml-1.9.1/unittests/data/indexing_suites2.hpp
Examining data/pygccxml-1.9.1/unittests/data/inline_specifier.hpp
Examining data/pygccxml-1.9.1/unittests/data/merge_free_functions.hpp
Examining data/pygccxml-1.9.1/unittests/data/msvc_build/all.cpp
Examining data/pygccxml-1.9.1/unittests/data/non_copyable_classes.hpp
Examining data/pygccxml-1.9.1/unittests/data/noncopyable.hpp
Examining data/pygccxml-1.9.1/unittests/data/patcher.hpp
Examining data/pygccxml-1.9.1/unittests/data/plain_c.c
Examining data/pygccxml-1.9.1/unittests/data/remove_template_defaults.hpp
Examining data/pygccxml-1.9.1/unittests/data/separate_compilation/all.h
Examining data/pygccxml-1.9.1/unittests/data/separate_compilation/base.h
Examining data/pygccxml-1.9.1/unittests/data/separate_compilation/data.h
Examining data/pygccxml-1.9.1/unittests/data/separate_compilation/derived.h
Examining data/pygccxml-1.9.1/unittests/data/string_traits.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_argument_without_name.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_copy_constructor.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_elaborated_types.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_function_pointer.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_map_gcc5.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_non_copyable_recursive.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_order.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_pattern_parser.hpp
Examining data/pygccxml-1.9.1/unittests/data/test_smart_pointer.hpp
Examining data/pygccxml-1.9.1/unittests/data/type_as_exception_bug.h
Examining data/pygccxml-1.9.1/unittests/data/type_traits.hpp
Examining data/pygccxml-1.9.1/unittests/data/typedefs1.hpp
Examining data/pygccxml-1.9.1/unittests/data/typedefs2.hpp
Examining data/pygccxml-1.9.1/unittests/data/typedefs_base.hpp
Examining data/pygccxml-1.9.1/unittests/data/unnamed_classes.hpp
Examining data/pygccxml-1.9.1/unittests/data/unnamed_enums_bug1.hpp
Examining data/pygccxml-1.9.1/unittests/data/unnamed_enums_bug2.hpp
Examining data/pygccxml-1.9.1/unittests/data/unnamed_ns_bug.hpp
Examining data/pygccxml-1.9.1/unittests/data/vector_traits.hpp
FINAL RESULTS:
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:474:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:475:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const arr_c_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:476:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile arr_v_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:477:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const volatile arr_cv_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:478:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile const arr_vc_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:490:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:491:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_c_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:492:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile arr_v_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:493:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile arr_cv_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:494:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile arr_vc_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:528:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:529:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const arr_c_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:530:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile arr_v_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:531:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const volatile arr_cv_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:532:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile const arr_vc_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:543:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:544:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const arr_c_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:545:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_v_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:546:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const arr_cv_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:547:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const arr_vc_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:568:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:569:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const arr_c_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:570:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile arr_v_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:571:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char const volatile arr_cv_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:572:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char volatile const arr_vc_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:590:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:591:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_c_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:592:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_v_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:593:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_cv_42[42];
data/pygccxml-1.9.1/unittests/data/type_traits.hpp:594:13: [2] (buffer) char:
Statically-sized arrays can be improperly restricted, leading to potential
overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use
functions that limit length, or ensure that the size is larger than the
maximum possible length.
typedef char arr_vc_42[42];
ANALYSIS SUMMARY:
Hits = 30
Lines analyzed = 4049 in approximately 0.12 seconds (34760 lines/second)
Physical Source Lines of Code (SLOC) = 2664
Hits@level = [0] 0 [1] 0 [2] 30 [3] 0 [4] 0 [5] 0
Hits@level+ = [0+] 30 [1+] 30 [2+] 30 [3+] 0 [4+] 0 [5+] 0
Hits/KSLOC@level+ = [0+] 11.2613 [1+] 11.2613 [2+] 11.2613 [3+] 0 [4+] 0 [5+] 0
Dot directories skipped = 1 (--followdotdir overrides)
Minimum risk level = 1
Not every hit is necessarily a security vulnerability.
There may be other security vulnerabilities; review your code!
See 'Secure Programming HOWTO'
(https://dwheeler.com/secure-programs) for more information.