Function cwe_checker_lib::checkers::cwe_78::check_cwe

source ·

pub fn check_cwe(
    analysis_results: &AnalysisResults<'_>,
    cwe_params: &Value
) -> (Vec<LogMessage>, Vec<CweWarning>)

Expand description

This check checks the string parameter at system calls given by the string abstraction analysis to find potential OS Command Injection vulnerabilities.