Coverity Scan: airsonic

Project Name airsonic
Lines of code analyzed 76,926
On Coverity Scan since Mar 26, 2019
Last build analyzed about 2 months ago
   
Language Java
Secondary Language JavaScript
Repository URL https://github.com/airsonic/airsonic.git
Homepage URL https://airsonic.github.io/
License GPL (GNU General Public License version )

Want to view defects or help fix defects?

 Add me to project

Analysis Metrics

Version: d4aff1dca52934b6c8306271cf9429...

Sep 15, 2019
Last Analyzed
76,926
Lines of Code Analyzed
4.29
Defect Density

Defect changes since previous build dated Jun 05, 2019

251
Newly detected
128
Eliminated

Defects by status for current build

352
Total defects
330
Outstanding
10
Fixed

Note: Defect density is measured by the number of defects per 1,000 lines of code.


Analysis Metrics per Components

Component Name Pattern Ignore Line of Code Defect density
Other .* No 95,283 3.46

CWE Top 25 defects

ID CWE-Name Number of Defects
22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') 5
78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') 1
79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 14
352 Cross-Site Request Forgery (CSRF) 90
829 Inclusion of Functionality from Untrusted Control Sphere 1
Loading...

Loading...

Loading...

Loading...

Loading...

About Coverity Scan Static Analysis

Find and fix defects in your C/C++, Java, JavaScript or C# open source project for free.

Coverity Scan tests every line of code and potential execution path. The root cause of each defect is clearly explained, making it easy to fix bugs.

Would you like to view the project defects, or help improve its quality by fixing defects?

 Add me to project