Static Analysis / Code Scanning Tool (SAST) for D?
Stefan Koch
uplink.coder at googlemail.com
Sat Apr 28 16:01:44 UTC 2018
On Saturday, 28 April 2018 at 15:30:01 UTC, Jonathan M. Wilbur
wrote:
> Does anybody know of a SAST tool that can scan D code for
> security vulnerabilities? In other words, does anybody know of
> something that will analyze raw D source code for security
> vulnerabilities that the human eye may have missed?
No. Besides analyzing D code is normally quite useless,
as the tool will be blind once it hits the first template.
Security vulnerabilities, are usually nothing which can be
caught by static analysis on source code.
As they are highly dependent on which shape the generate machine
code takes.
More information about the Digitalmars-d
mailing list