gitlab.flawfinder.strcpy-1

137

Download Count*

MIT

License

Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily misused).

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: flawfinder.strcpy-1
    languages:
      - c
    message: >
      Consider using snprintf, strcpy_s, or strlcpy (warning: strncpy easily
      misused).
    metadata:
      cwe: "CWE-120: Does not check for buffer overflows when copying to destination
        [MS-banned] (CWE-120)"
      primary_identifier: flawfinder.strcpy-1
      secondary_identifiers:
        - name: Flawfinder - strcpy
          type: flawfinder_func_name
          value: strcpy
      license: MIT
    pattern: strcpy(...)
    severity: ERROR

Short Link: https://sg.run/AwAg