gitlab.flawfinder.tmpnam-1.tempnam-1

137

Download Count*

MIT

License

Creating and using insecure temporary files can leave application and system data vulnerable to attack.

Run Locally

Run in CI

Semgrep CI docs

Defintion

Edit Rule View Source

Open in Playground

rules:
  - id: flawfinder.tmpnam-1.tempnam-1
    languages:
      - c
    message: >
      Creating and using insecure temporary files can leave application and
      system data vulnerable to

      attack.
    metadata:
      cwe: "CWE-377: Temporary file race condition (CWE-377)"
      primary_identifier: flawfinder.tmpnam-1.tempnam-1
      secondary_identifiers:
        - name: Flawfinder - tmpnam
          type: flawfinder_func_name
          value: tmpnam
        - name: Flawfinder - tempnam
          type: flawfinder_func_name
          value: tempnam
      license: MIT
    pattern-either:
      - pattern: tmpnam(...)
      - pattern: tempnam(...)
    severity: WARNING

Short Link: https://sg.run/Awkg