This is the mail archive of the
cygwin-apps
mailing list for the Cygwin project.
[ITP] flawfinder 1.27 -- Examine source code and look for security weaknesses
- From: Jari Aalto (Cygwin-bug#20070930T1617) <jari dot aalto at cante dot net>
- To: cygwin-apps at cygwin dot com
- Date: Sun, 30 Sep 2007 19:20:51 +0300
- Subject: [ITP] flawfinder 1.27 -- Examine source code and look for security weaknesses
Included in Debian stable
http://packages.debian.org/flawfinder
Jari
sdesc: "Examine source code and look for security weaknesses"
ldesc: "Program searches through C/C++ source code looking for potential
security flaws, ranking them by likely severity. It's is a tool to
quickly finding and removing at least some potential security problems
before a program is widely released to the public. Flawfinder can also
generate differential reports by pointing it to a patch (diff) file
describing the code changes. This way it can be used to determine if
the potential flaws found in code have increased or decreased after a
commit to a source code management system like CVS or Subversion."
category: Security
requires: cygwin python
a) manual
wget \
http://cygwin.cante.net/flip/flip-1.19-1-src.tar.bz2 \
http://cygwin.cante.net/flip/flip-1.19-1.tar.bz2 \
http://cygwin.cante.net/flip/setup.hint \
b) automated
gpg --keyserver wwwkeys.pgp.net --recv-keys 955A92D8
mkdir flip ; cd flip
rm -f get.sh get.sh.sig
wget http://cygwin.cante.net/flip/get.sh \
http://cygwin.cante.net/flip/get.sh.sig &&
gpg --verify get.sh.sig get.sh &&
sh get.sh
cd /usr/src/cygwin-packages/flip
less /usr/src/cygwin-packages/flip/get.sh
tar -jtvf /usr/src/cygwin-packages/flip/flip-1.19-1.tar.bz2
--
Welcome to FOSS revolution: we fix and modify until it shines