codeql-coding-standards icon indicating copy to clipboard operation
codeql-coding-standards copied to clipboard
verified publisher icon github

`FIO32-C`: enhance the query to support secure `fopen` usage pattern

Open mbaluda opened this issue 3 years ago • 0 comments

Affected rules

  • FIO32-C

Description

Currently the implementation simply checks that the filename used in a call to fopen is not tainted. However, the rule requires that certain OS-supported dynamic checks are present in the code. We'd like to enhance this query to support some usage pattern that would allow it to be excluded from being checked.

mbaluda avatar Jul 15 '22 13:07 mbaluda