PHP静态安全扫描器:php-security-scanner
程序员文章站
2022-04-02 18:06:12
...
它能够探测传递的不安全变量到不安全的函数参数。
用法:
bin/php-security-scanner scan path/to/files
它将搜索所有文件的安全问题。
示例
Given the following code:
Running the scanner on this file will identify like 4 as an error, with the message:
Possible SQL Injection found in call to foo() argument number 1
Supported vulnerability scanners:
Currently, onlymysql_queryis supported, and only in limited situations.
项目主页:http://www.open-open.com/lib/view/home/1438239170863
上一篇: php怎么关闭session
下一篇: 基于时间的中奖几率算法