Static Analysis

The execution of our static analysis toolkit identified 731 potential issues within the codebase of which 535 were ruled out to be false positives or negligible findings.

The remaining 196 issues were validated and grouped and formalized into the 82 exhibits that follow:

ID	Severity	Addressed	Title
ACM-01S			Inexistent Sanitization of Input Address
ANI-01S			Inexistent Sanitization of Input Addresses
AGR-01S			Inexistent Sanitization of Input Addresses
ACR-01S			Inexistent Sanitization of Input Address
ACR-02S			Multiple Top-Level Declarations
ANO-01S			Inexistent Event Emission
ANO-02S			Inexistent Sanitization of Input Address
CCR-01S			Multiple Top-Level Declarations
CRR-01S			Inexistent Sanitization of Input Addresses
CRY-01S			Multiple Top-Level Declarations
ERC-01S			Multiple Top-Level Declarations
FSY-01S			Inexistent Sanitization of Input Addresses
FLB-01S			Illegible Numeric Value Representation
FLB-02S			Inexistent Sanitization of Input Addresses
FIR-01S			Inexistent Sanitization of Input Address
FLI-01S			Inexistent Sanitization of Input Addresses
FSG-01S			Illegible Numeric Value Representations
FSG-02S			Inexistent Sanitization of Input Addresses
FSG-03S			Inexistent Visibility Specifiers
FSG-04S			Literal Equality of bool Variable
FSG-05S			Multiple Top-Level Declarations
GRY-01S			Inexistent Sanitization of Input Addresses
GRY-02S			Multiple Top-Level Declarations
LMR-01S			Inexistent Sanitization of Input Addresses
LMR-02S			Multiple Top-Level Declarations
LSY-01S			Inexistent Sanitization of Input Addresses
LSA-01S			Inexistent Sanitization of Input Addresses
LSS-01S			Multiple Top-Level Declarations
MWR-01S			Multiple Top-Level Declarations
MSY-01S			Inexistent Sanitization of Input Addresses
MSY-02S			Multiple Top-Level Declarations
MCR-01S			Multiple Top-Level Declarations
MFS-01S			Inexistent Sanitization of Input Addresses
MFS-02S			Multiple Top-Level Declarations
MLL-01S			Inexistent Sanitization of Input Address
NFS-01S			Illegible Numeric Value Representations
NFS-02S			Inexistent Sanitization of Input Addresses
NFS-03S			Multiple Top-Level Declarations
NSR-01S			Illegible Numeric Value Representations
NSR-02S			Inexistent Sanitization of Input Address
NSR-03S			Inexistent Visibility Specifiers
NSR-04S			Multiple Top-Level Declarations
NZL-01S			Inexistent Sanitization of Input Addresses
NDM-01S			Inexistent Sanitization of Input Address
NGR-01S			Inexistent Sanitization of Input Addresses
NGR-02S			Multiple Top-Level Declarations
NRC-01S			Multiple Top-Level Declarations
PSR-01S			Illegible Numeric Value Representations
PSR-02S			Inexistent Sanitization of Input Addresses
PSR-03S			Inexistent Visibility Specifiers
RGR-01S			Inexistent Sanitization of Input Addresses
RGR-02S			Multiple Top-Level Declarations
RRC-01S			Multiple Top-Level Declarations
RVC-01S			Multiple Top-Level Declarations
SFY-01S			Inexistent Event Emission
SFY-02S			Inexistent Sanitization of Input Addresses
SMG-01S			Inexistent Sanitization of Input Address
SRY-01S			Illegible Numeric Value Representation
SRY-02S			Inexistent Event Emission
SRY-03S			Inexistent Sanitization of Input Address
SRY-04S			Multiple Top-Level Declarations
SSE-01S			Inexistent Event Emission
SSE-02S			Inexistent Sanitization of Input Addresses
SSE-03S			Multiple Top-Level Declarations
SLS-01S			Inexistent Sanitization of Input Address
SME-01S			Inexistent Sanitization of Input Address
SGR-01S			Inexistent Sanitization of Input Addresses
SGR-02S			Multiple Top-Level Declarations
SLB-01S			Inexistent Sanitization of Input Address
SLB-02S			Inexistent Visibility Specifier
SSY-01S			Inexistent Sanitization of Input Addresses
TAN-01S			Inexistent Sanitization of Input Addresses
TLB-01S			Inexistent Sanitization of Input Addresses
UVC-01S			Multiple Top-Level Declarations
VCR-01S			Inexistent Sanitization of Input Address
VCR-02S			Multiple Top-Level Declarations
VGR-01S			Inexistent Sanitization of Input Addresses
VGR-02S			Multiple Top-Level Declarations
VRC-01S			Multiple Top-Level Declarations
VSR-01S			Inexistent Sanitization of Input Addresses
VSR-02S			Multiple Top-Level Declarations
ZLB-01S			Inexistent Sanitization of Input Addresses