cobra

Source Code Security Audit (源代码安全审计)

View on GitHub

Languages(语言)

语言用来标记扫描规则对应需要扫描的后缀。 Cobra支持以下开发语言和文件类型,支持程度取决于对应开发语言或文件类型的规则数量。

语言 主语言 后缀
PHP .php/.php3/.php4/.php5
Java .java
Python .py
JSP .jsp
C .h/.c
Ruby .rb
Perl .pl
Lua .lua
Go .go
Swift .swift
C++ .c/.cpp
C# .cs
Header .h
Objective-C .m
Scale .sbt/.scale
Ceylon .ceylon
Kotlin .kt
SHELL .sh
BAT .bat
JavaScript .js
HTML .html/.htm/.pthml
CSS .css/.less/.scss/.styl
Image .jpg/.png/.bmp/.gif/.ico/.cur
Font .eot/.otf/.svg/.ttf/.woff
Conf .properties/.conf/.ini/.cfg/.yml/.xml/.iml/.sfp/.manifest
CMake .cmake/.cmake.in
SQL .sql
Compression .zip/.tar/.tar.gz/.rar
Executable .exe
LOG .log
Text .txt/.text/.md/.rst/.csv
Office .doc/.docx/.wps/.rtf/.xls/.ppt
Media .mp3/.mp4/.swf/.flv
Certificate .p12/.crt/.key/.pfx/.csr
Source .psd/.ai/.axure/.xmind/.plan
Thumb .db/.DS_Store
GIT .pack/.idx/.sample

下一章:漏洞类型定义