parse
parse copied to clipboard
psecio
Parse: A Static Security Scanner
Think about possibly adding "object calisthenics" checks... - One level of indentation - Don't use else - Wrap primitive types (if they contain behavior) - Only one -> per line...
It's been suggested in #10 that a configuration file should be added to allow for more customization than just the command line options allow. Considerations: - Format (JSON, XML, YAML,...
Following on from #67 , I've: - updated the branch 2c9118c - updated the json schema package (< 1.4 didn't behave on PHP 7) cc7f123 - added symfony/finder 82eb763 so...
While trying to figure out `TestDisableDisplayErrors`, I started wondering if there could be an easier way to specify tests. Something along the lines of PHPUnit's `assertThat()`. I was think something...
This PR is simply a merge of #62 to bring it up-to-date with master. If @hanneskod wants to update #62 instead, I'm happy to oblige. Otherwise I'll probably merge this...
Prepares for a configuration file by adding the ability of reading configs from multiple sources. Configuration handling is moved to the `Conf` namespace. Merging will close #13.
In other words, if you can only tell at runtime if a usage is correct, should the test fail, warn, or pass? For instance, `TestSessionRegenFalse` checks if the function `session_regenerate_id()`...
Does this tool need to have some kind of HTML output handling? I know the RIPS tool used to have something like this, so I'm wondering if it's that useful....