Flawfinder version 2.0.10, (C) 2001-2019 David A. Wheeler. Number of rules (primarily dangerous function names) in C/C++ ruleset: 223 Examining data/toilet-0.3/tools/caca2tlf.c Examining data/toilet-0.3/src/export.c Examining data/toilet-0.3/src/main.c Examining data/toilet-0.3/src/render.c Examining data/toilet-0.3/src/export.h Examining data/toilet-0.3/src/filter.h Examining data/toilet-0.3/src/figlet.c Examining data/toilet-0.3/src/toilet.h Examining data/toilet-0.3/src/term.c Examining data/toilet-0.3/src/render.h Examining data/toilet-0.3/src/filter.c FINAL RESULTS: data/toilet-0.3/src/main.c:156:13: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(MOREINFO, argv[0]); data/toilet-0.3/src/main.c:160:13: [4] (format) printf: If format strings can be influenced by an attacker, they can be exploited (CWE-134). Use a constant for the format specification. printf(MOREINFO, argv[0]); data/toilet-0.3/src/figlet.c:39:5: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char path[2048]; data/toilet-0.3/src/main.c:90:24: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). infocode = atoi(caca_optarg); data/toilet-0.3/src/main.c:114:30: [2] (integer) atoi: Unless checked, the resulting number can exceed the expected range (CWE-190). If source untrusted, check both minimum and maximum, even if the input had no minus sign (large numbers can roll over into negative number; consider saving to an unsigned value if that is intended). cx->term_width = atoi(caca_optarg); data/toilet-0.3/tools/caca2tlf.c:160:13: [2] (buffer) char: Statically-sized arrays can be improperly restricted, leading to potential overflows or other issues (CWE-119!/CWE-120). Perform bounds checking, use functions that limit length, or ensure that the size is larger than the maximum possible length. char buf[7]; data/toilet-0.3/src/filter.c:86:49: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). if(!strncmp(filter, lookup[i].name, strlen(lookup[i].name))) data/toilet-0.3/src/filter.c:88:21: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). n = strlen(lookup[i].name); data/toilet-0.3/src/render.c:64:50: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). caca_import_canvas_from_memory(cv, line, strlen(line), "utf8"); data/toilet-0.3/src/render.c:104:19: [1] (buffer) strlen: Does not handle strings that are not \0-terminated; if given one it may perform an over-read (it could cause a crash if unprotected) (CWE-126). len = strlen(parser); ANALYSIS SUMMARY: Hits = 10 Lines analyzed = 1358 in approximately 0.05 seconds (28299 lines/second) Physical Source Lines of Code (SLOC) = 972 Hits@level = [0] 26 [1] 4 [2] 4 [3] 0 [4] 2 [5] 0 Hits@level+ = [0+] 36 [1+] 10 [2+] 6 [3+] 2 [4+] 2 [5+] 0 Hits/KSLOC@level+ = [0+] 37.037 [1+] 10.2881 [2+] 6.17284 [3+] 2.05761 [4+] 2.05761 [5+] 0 Dot directories skipped = 2 (--followdotdir overrides) Minimum risk level = 1 Not every hit is necessarily a security vulnerability. There may be other security vulnerabilities; review your code! See 'Secure Programming HOWTO' (https://dwheeler.com/secure-programs) for more information.