Codechecker

Latest version: v6.23.1

Safety actively analyzes 638379 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 8 of 13

6.3

New

* Include paths from environment variables in analysis phase 1184
* `--include` flags shouldn't be skipped during analysis 1237
* In anonymous mode allow superuser permission 1137
* Understand HTTPS product and server URLs without a port specified as 443 1146
* Showing severity report count at the statistics page 1104
* Enable copy-paste for links 1164
* How to handle false positives HOWTO 1185
* Feature comparison of cmd and webgui 1197
* Performance/stress tests 808
* Command line diff performance improvements 956
* Show unique bug count in the run list page (instead of non unique) 1202
* Include paths from environment variables in analysis phase 1184
* Schema migration support of product databases 351
* Mount the same configuration database to multiple servers 876

Changes

* New report storage method: store every single bug report even if hash clashes, remove outdated resolved paths at run update 1213
* Put full date in log messages not only the time 1214
* Improve comments for the LDAP authentication 1217
* Rename some column labels 1200
* Use absolute path in logger 1097
* Upgrade SQLAchemy to 1.1.11 1107
* Improve performance of report filters 1038
* Do not reparse unchanged files to get suppression to improve performance 1231
* Don't log as error if multiple source and triple is present in the log file 1230
* Update plist file with report hash 1239
* File cleanup refactoring 1131
Bug fix

* Fix run storage error (AddFileRecord return value) 1215
* Update line and column fields of report 1106
* Mismatch between filter result count and number of listed reports 1093
* Wrong handling of builtin includes during CTU collect phase 1143
* --enable-all with other options doesn't run most of the clang-tidy checkers 1148
* Server should not start in case of incorrectly formatted json file 1149
* Exception is thrown if product name is not specified 1174
* Exception is thrown while parsing compilation json 1180
* After a run is deleted the counter is not updated 1152
* Bug tree shows issues from all runs even if one run selected 1117
* Remove gcc intrinsic and include-fixed include directories from analysis 1183
* Ordering by File when Unique reports are enabled doesn't give an alphabetical order 1198
* Handle more plist parsing errors 1225
* Remove linecache usage 1227
* Review status false positive is not set 1223
* Failure zip does not contain all dependent headers (CTU) 1159
* Make sure that file is closed if plist parsing fails 1216
* Don't attempt to add the same file multiple times to the ZIP 1234
* Generate report hash fix 1235
* Fix server general exception 1242
* Do not store same bug from plist files 1247

6.2.1

Bug fixes

- Web GUI filters for *Checker name* now shows the full list of checkers, not just the first 10. (1156)
- `--enable-all` given to `check` was not passed through to `analyze`. (1163)
- Fixed a bug at compiler target detection (1180)
- Fixed a connection handling issue to LDAP authentication backends. (1139)
- Fix CodeChecker making Clang-SA/Tidy use system GCC headers instead of the Clang's ones. (1144, 1173)

Enhancements

- URLs in the command-line specifying `http://` or `https://` should use port `80` and `443` respectively, if an explicit port is not given. (#1146, 1150, 1175)
- CodeChecker server will now refuse to start if the `session_config.json` file is malformed. (1151)
- Comparing a local result folder to a run stored on the server has received a massive performance improvement. (1169)

Miscellaneous

- Added scripts to aid the debugging of failed analyses. (1113)
- Upgraded SQLAlchemy to a newer version. (1142)

6.2

New features

* Local Compare mode (`CodeChecker cmd diff`) can generate HTML files with bug path 748
* Show number of runs on the list of runs view 1079
* Show the granted permissions for the currently logged in user on the GUI 875

Enhancements

* Introduce better (debug) logging for CTU analysis 886, 1069, 1100, 1050
* Group reports only by bug hash when uniqueing 1121
* Make sure query strings and filters cannot be used for SQL attacks 902
* Report storage session improvements for large amount of reports 1072
* Add icons for tabs 1086
* Development environment improvements 1105
* Logging improvements 1119

Bug fixes

* `clang-tidy` hash was incorrectly generated in some cases which caused some false new reports shown in diff view 1114
* Fix Analysis failure if multiple cross-compiler was used (compilation target is registered per build action) 1099
* Relative paths in compilation database were not properly handled at analysis which caused some analysis failures 1116
* Performance improvement of unresponsive server (when the results contained thousands of files) 1053
* Show the supported browser version 1084
* Bad function parameter call at statistics 1103
* Product page error in Firefox 1101
* Fix a typo in the doc for psql commands 1108
* Bug report was not opened correctly when opened from the `All Reports` view 1118

Changes

* Remove `cppcoreguidelines-pro-type-vararg` from the sensitive profile 1080

Two checkers are conflicting and causing the analyzer to hang, until the checkers are fixed
we removed the checker from the sensitive profile so it will not be enabled implicitly.

6.1.1

Bug fixes
* Clang-tidy result parsing error which caused increasing memory consumption 1064
* UI fix: in the bug overview the result count and the number of shown bugs differs 533
* UI fix: bug path was not shown in some cases 1033
* `CodeChecker analyze` does not show analysis errors when it only re-analyze files 1043
If there was no explicit report output directory the default report directory was not cleaned up between two analysis runs, which could cause misleading results from the `parse` command.
* Storage should be stopped immediately if a storage is already ongoing on with the same name 1013
* --verbose debug_analyzer did not print the analysis calls 999

Improvements
* report filter query performance improvements 1052
* Limit the up loadable data size to the server 840
* improve command line client coding convention 1070
* documentation updates with CI loop script examples 994
* test infrastructure updates 1055

Changes!
* severity level of `misc-string-compare` checker was changed from HIGH to LOW 1058

6.1

New features, improvements:
* HTML report file generation support for `CodeChecker parse` command. These HTML files contain the full control-flow path of the detected bugs. They can be viewed off-line without accessing the CodeChecker server or sent in an email. 1034
* `CodeChecker cmd diff` can be called for multiple runs. That is your results in the report directory can be compared against multiple runs using wildcards. 978
* Checker profiles. Checker pre-selection profiles were introduced to help in the selection of checkers. Three new profiles were introduced in increasing order of sensitivity (and false positive rate): `default`, `sensitive`, `extreme`. 907
* Clang will not warn about unused compiler arguments 985
* Print clang generated report hash at the command line parse with the steps together 1009

Analyzer invocation
* Better detection of gcc/g++ cross compilation parameters. `--saargs` and `--tidyargs` parameters should not be used for cross-compilation anymore. 995
* Include directory detection for clang-tidy 993

Documentation changes:
* New user guide accessible at the server 737
* Improved PostgreSQL database setup documentation 1001

Bug fixes:
Web UI:
* Report step were not shown on the UI 986 and 988
* Statistics view did not show the results 950
* Statistics view should not collect run names in the drop down 979
* Product listing did not work properly in Firefox 912
* Run without reports were not rendered correctly 1002
* Run history tab switch did not work properly 1017
* If there were many runs the loading of the run list was slow 1019

Command line:
* Storage failed with sqlite db backend if there were many results. 1005
* `CodeChecker cmd sum` command error 1004
* `CodeChecker cmd sum` report uniqueing 1025
* `CodeChecker cmd sum` get statistics only for the specified run names 1026
* `CodeChecker check` command did not work properly when it was called without output directory 992

6.0.1

BUG Fixes and small feature additions

* 883 Analysis runs show the *store* duration
* 958 Show the latest run tag in the run list table
* 959 sorting by severity does not work in the bug list
* 960 Show severity at the parse output
* 961 Show result summary at the parse output
* 962 run name filter in diff command
* 963 update run tag if the same tag is used in one run

Page 8 of 13

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.