Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/r-cran-extradistr-1.9.1/src/beta-prime-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/skellam-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/discrete-weibull-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/half-normal-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/laplace-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/mixture-of-poisson-distributions.cpp Examining data/r-cran-extradistr-1.9.1/src/location-scale-t-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/half-cauchy-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/discrete-laplace-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/gumbel-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/gamma-poisson-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/lomax-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/bivariate-poisson-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/proportion-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/non-standart-beta-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/beta-binomial-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/discrete-normal-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/birnbaum-saunders-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/categorical-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/shared_inline.h Examining data/r-cran-extradistr-1.9.1/src/multinomial-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/truncated-normal-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/truncated-poisson-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/rademacher-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/bernoulli-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/huber-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/pareto-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/frechet-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/inverse-gamma-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/wald-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/discrete-gamma-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/gev-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/dirichlet-multinomial-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/tuckey-lambda-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/bhattacharjee-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/zero-inflated-negative-binomial-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/slash-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/multivariate-hypergeometric-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/gompertz-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/truncated-binomial-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/shifted-gompertz-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/beta-negative-binomial-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/triangular-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/half-t-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/dirichlet-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/gpd-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/negative-hypergeometric-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/discrete-uniform-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/zero-inflated-binomial-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/power-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/zero-inflated-poisson-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/kumaraswamy-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/shared.h Examining data/r-cran-extradistr-1.9.1/src/shared.cpp Examining data/r-cran-extradistr-1.9.1/src/mixture-of-normal-distributions.cpp Examining data/r-cran-extradistr-1.9.1/src/bivariate-normal-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/categorical-distribution-lp.cpp Examining data/r-cran-extradistr-1.9.1/src/rayleigh-distribution.cpp Examining data/r-cran-extradistr-1.9.1/src/RcppExports.cpp Examining data/r-cran-extradistr-1.9.1/src/logarithmic-series-distribution.cpp Examining data/r-cran-extradistr-1.9.1/inst/include/extraDistr_RcppExports.h Examining data/r-cran-extradistr-1.9.1/inst/include/extraDistr.h FINAL RESULTS: data/r-cran-extradistr-1.9.1/src/bernoulli-distribution.cpp:42:3: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[55]; data/r-cran-extradistr-1.9.1/src/shared.cpp:9:7: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char msg[55]; ANALYSIS SUMMARY: Hits = 2 Lines analyzed = 23771 in approximately 0.66 seconds (36057 lines/second) Physical Source Lines of Code (SLOC) = 19929 Hits@level = [0] 2 [1] 0 [2] 2 [3] 0 [4] 0 [5] 0 Hits@level+ = [0+] 4 [1+] 2 [2+] 2 [3+] 0 [4+] 0 [5+] 0 Hits/KSLOC@level+ = [0+] 0.200713 [1+] 0.100356 [2+] 0.100356 [3+] 0 [4+] 0 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.