Skip to content

Track anonymous functions #127

New issue
New issue
Open
Open
Track anonymous functions#127
Labels
discussionMaintainers are inviting discussion.enhancementNew feature or requestfalse-positivethe issue can create a false-positivevet-botthe issue is part of VetBot's responsibility
@kalexmills

Description

@kalexmills
kalexmills
opened on Dec 28, 2020

There are a few cases where anonymous functions are used in reported findings. The current tool misreports them either as third-party, or, if their signature matches a declared function, yields a false-positive.

In theory, these could be tracked, if the anonymous function being used appears as an argument in a function declaration. That would allow us to match up the function signatures and consider each anonymous function declared in the codebase with a matching signature as a candidate "declaration". We could then trace any calls found whose signature matches the argument with the candidate declarations.

This probably won't be implemented as it's a substantial change, but it's a possibility in case we find a lot of reports that could use it.

Metadata

Metadata

Assignees

No one assigned

    Labels

    discussionMaintainers are inviting discussion.enhancementNew feature or requestfalse-positivethe issue can create a false-positivevet-botthe issue is part of VetBot's responsibility

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions