Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/action_definition.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/action_client.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/client_goal_handle_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/client_helpers.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/comm_state.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/comm_state_machine_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/connection_monitor.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/goal_manager_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/service_client.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/service_client_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/simple_action_client.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/simple_client_goal_state.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/simple_goal_state.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client/terminal_state.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/client_goal_status.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/decl.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/destruction_guard.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/enclosure_deleter.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/goal_id_generator.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/managed_list.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/one_shot_timer.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/action_server.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/action_server_base.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/action_server_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/handle_tracker_deleter.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/handle_tracker_deleter_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/server_goal_handle.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/server_goal_handle_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/service_server.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/service_server_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/simple_action_server.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/simple_action_server_imp.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/status_tracker.h Examining data/ros-actionlib-1.13.2/actionlib/include/actionlib/server/status_tracker_imp.h Examining data/ros-actionlib-1.13.2/actionlib/src/connection_monitor.cpp Examining data/ros-actionlib-1.13.2/actionlib/src/goal_id_generator.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/action_client_destruction_test.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/add_two_ints_client.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/add_two_ints_server.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/destruction_guard_test.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/ref_server.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/server_goal_handle_destruction.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/simple_client_allocator_test.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/simple_client_test.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/simple_client_wait_test.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/simple_execute_ref_server.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/test_cpp_simple_client_cancel_crash.cpp Examining data/ros-actionlib-1.13.2/actionlib/test/exercise_simple_client.cpp FINAL RESULTS: data/ros-actionlib-1.13.2/actionlib/test/add_two_ints_client.cpp:56:11: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). req.a = atoi(argv[1]); data/ros-actionlib-1.13.2/actionlib/test/add_two_ints_client.cpp:57:11: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). req.b = atoi(argv[2]); ANALYSIS SUMMARY: Hits = 2 Lines analyzed = 8061 in approximately 0.29 seconds (28240 lines/second) Physical Source Lines of Code (SLOC) = 4525 Hits@level = [0] 7 [1] 0 [2] 2 [3] 0 [4] 0 [5] 0 Hits@level+ = [0+] 9 [1+] 2 [2+] 2 [3+] 0 [4+] 0 [5+] 0 Hits/KSLOC@level+ = [0+] 1.98895 [1+] 0.441989 [2+] 0.441989 [3+] 0 [4+] 0 [5+] 0 Dot directories skipped = 1 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.