2020-02-10 17:35:36 +00:00
|
|
|
---
|
|
|
|
# vi: ts=2 sw=2 et:
|
2021-12-07 13:14:39 +00:00
|
|
|
# SPDX-License-Identifier: LGPL-2.1-or-later
|
2020-02-10 17:35:36 +00:00
|
|
|
|
2021-11-30 22:40:28 +00:00
|
|
|
# Explicitly enable certain checks which are hidden by default
|
|
|
|
queries:
|
|
|
|
- include: cpp/bad-strncpy-size
|
|
|
|
- include: cpp/declaration-hides-variable
|
|
|
|
- include: cpp/inconsistent-null-check
|
|
|
|
- include: cpp/mistyped-function-arguments
|
|
|
|
- include: cpp/nested-loops-with-same-variable
|
|
|
|
- include: cpp/sizeof-side-effect
|
|
|
|
- include: cpp/suspicious-pointer-scaling
|
|
|
|
- include: cpp/suspicious-pointer-scaling-void
|
|
|
|
- include: cpp/suspicious-sizeof
|
|
|
|
- include: cpp/unsafe-strcat
|
|
|
|
- include: cpp/unsafe-strncat
|
|
|
|
- include: cpp/unsigned-difference-expression-compared-zero
|
|
|
|
- include: cpp/unused-local-variable
|
|
|
|
- include:
|
|
|
|
tags:
|
|
|
|
- "security"
|
|
|
|
- "correctness"
|
|
|
|
severity: "error"
|
|
|
|
|
2018-07-23 16:37:29 +00:00
|
|
|
extraction:
|
|
|
|
cpp:
|
|
|
|
prepare:
|
|
|
|
packages:
|
2019-11-20 22:34:21 +00:00
|
|
|
- libpwquality-dev
|
2019-12-17 18:19:02 +00:00
|
|
|
- libfdisk-dev
|
|
|
|
- libp11-kit-dev
|
|
|
|
- libssl-dev
|
2021-05-17 08:36:30 +00:00
|
|
|
- python3-jinja2
|
2021-07-28 08:26:29 +00:00
|
|
|
after_prepare:
|
2021-11-19 16:23:03 +00:00
|
|
|
- pip3 install -r .github/workflows/requirements.txt --require-hashes
|
2021-07-28 08:26:29 +00:00
|
|
|
- export PATH="/opt/work/.local/bin:$PATH"
|
2018-12-08 11:51:56 +00:00
|
|
|
python:
|
|
|
|
python_setup:
|
|
|
|
version: 3
|