...
Tool | Version | Checker | Description | ||||||
---|---|---|---|---|---|---|---|---|---|
Astrée |
| Supported, but no explicit checker | |||||||
Axivion Bauhaus Suite |
| CertC-ENV33 | |||||||
Clang |
| cert-env33-c | Checked by clang-tidy | ||||||
CodeSonar |
| BADFUNC.PATH.SYSTEM | Use of system | ||||||
Compass/ROSE | |||||||||
Coverity |
| DONT_CALL | Implemented | ||||||
Klocwork |
| MISRA.STDLIB.ABORT | |||||||
LDRA tool suite |
| 588 S | Fully implemented | ||||||
Parasoft C/C++test |
| CERT_C-ENV33-a | Do not call system() | ||||||
Polyspace Bug Finder |
| Execution of externally controlled command | Command argument from an unsecure source vulnerable to operating system command injection Path argument from an unsecure source Unsanitized command argument has exploitable vulnerabilities | ||||||
PRQA QA-C |
| 5018 | Partially implemented | ||||||
PRQA QA-C++ |
| 5031 | |||||||
RuleChecker |
| Supported, but no explicit checker | |||||||
SonarQube C/C++ Plugin |
| S990 | Detects uses of "abort", "exit", "getenv" and "system" from <stdlib.h> |
...