CWE-114: Process Control is considered as major vulnerability issue. Currently there is no sonar rule covering this flaw. https://cwe.mitre.org/data/definitions/114.html
Can we have a new rule to classify these kind of issues.
Hi @akash,
We already provide rule S2076 which matches the “executing commands” part. As for the vulnerabilities related to library loading, it is quite complex to detect. We have to investigate it.
What are the programming languages for which you would like to have this rule?
It is required for C also.