Release 2.0.7.0

Release Date: 29th October’21
Improvements and Bug fixes

  • We have added 4 C++ checks.
  1. unvalidated parameter as index
  2. Non-POD memory operation
  3. unvalidated loop boundary
  4. unconditional pointer dereference
  • We have added 2 CPP checks that map to * CWE
Sr.NoCPP checksCWE tags
Unchecked Input for Loop ConditionCWE-606
Loop with Unreachable Exit ConditionCWE-835
  • Upgraded versions and added new checks for below linters such as:
Sr.NoLinter NameOld versionUpgraded versionChanges
staticcheck0.1.20.2.1
gosec2.6.12.8.1
brakeman5.0.05.1.1
PMD6.26.06.39.016
PYLINT2.4.42.11.122
Solhint3.3.63.3.641
  • We have added 5 Java vulnerability checks that map to CWE
Sr.NoJava checksCWE tags
Non Serializable In SessionCWE- 579
Public Static Field Should Be FinalCWE- 500
Empty Synchronized BlockCWE- 585
Return In Finally BlockCWE- 584
Explicit Call To FinalizeCWE- 586