gitlab.flawfinder.mktemp-1

137

Download Count*

MIT

License

Creating and using insecure temporary files can leave application and system data vulnerable to attack (CWE-377).

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: flawfinder.mktemp-1
    languages:
      - c
    message: >
      Creating and using insecure temporary files can leave application and
      system data vulnerable to

      attack (CWE-377).
    metadata:
      cwe: "CWE-377: Temporary file race condition (CWE-377)"
      primary_identifier: flawfinder.mktemp-1
      secondary_identifiers:
        - name: Flawfinder - mktemp
          type: flawfinder_func_name
          value: mktemp
      license: MIT
    pattern: mktemp(...)
    severity: ERROR

Short Link: https://sg.run/GwPB