Broader coverage of C++ Core Guidelines & broken access control detection with SonarQube and SonarCl
SonarSource recently improved C++ analysis to provide even broader coverage of the C++ Core Guidelines and to add detection of broken access control vulnerabilities
C++ analyzer provides a broader coverage of the C++ Core Guidelines and detects broken access control security issues
By Alexandre Gigleux
From the article:
We’re proud to announce the following improvements to the C++ analyzer:
- security rules detecting broken authentication and access control issues
- broader coverage of the C++ Core Guidelines
Security RulesWe implemented 6 rules related to broken access control (incorrect permission assignments, privilege escalations, unprotected APIs …):