SecurityCodeScan 3.5.4

Security static code analyzer for .NET

Suggested Alternatives

SecurityCodeScan.VS2019

Additional Details

Please use SecurityCodeScan.VS2019 NuGet instead

Requires NuGet 2.8 or higher.

Install-Package SecurityCodeScan -Version 3.5.4
dotnet add package SecurityCodeScan --version 3.5.4
<PackageReference Include="SecurityCodeScan" Version="3.5.4">
  <PrivateAssets>all</PrivateAssets>
  <IncludeAssets>runtime; build; native; contentfiles; analyzers</IncludeAssets>
</PackageReference>
For projects that support PackageReference, copy this XML node into the project file to reference the package.
paket add SecurityCodeScan --version 3.5.4
The NuGet Team does not provide support for this client. Please contact its maintainers for support.
#r "nuget: SecurityCodeScan, 3.5.4"
#r directive can be used in F# Interactive, C# scripting and .NET Interactive. Copy this into the interactive tool or source code of the script to reference the package.
// Install SecurityCodeScan as a Cake Addin
#addin nuget:?package=SecurityCodeScan&version=3.5.4

// Install SecurityCodeScan as a Cake Tool
#tool nuget:?package=SecurityCodeScan&version=3.5.4
The NuGet Team does not provide support for this client. Please contact its maintainers for support.

This extension is legacy and is no longer maintained, please use SecurityCodeScan VS2019 instead.

Security static code analyzer for .NET

Website

  • Detects various security vulnerability patterns: SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), XML eXternal Entity Injection (XXE), etc.

  • Basic intraprocedural taint analysis for input data.

  • Analyzes .NET and .NET Core projects in a background (IntelliSense) or during a build.

  • Continuous Integration (CI) through MSBuild. For Unix CI runners please use VS2017 nuget package.

  • Works with Visual Studio 2015 or higher. Visual Studio Community, Professional and Enterprise editions are supported. Other editors that support Roslyn based analyzers like Rider or OmniSharp should work too.

  • Open Source

This extension is legacy and is no longer maintained, please use SecurityCodeScan VS2019 instead.

Security static code analyzer for .NET

Website

  • Detects various security vulnerability patterns: SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), XML eXternal Entity Injection (XXE), etc.

  • Basic intraprocedural taint analysis for input data.

  • Analyzes .NET and .NET Core projects in a background (IntelliSense) or during a build.

  • Continuous Integration (CI) through MSBuild. For Unix CI runners please use VS2017 nuget package.

  • Works with Visual Studio 2015 or higher. Visual Studio Community, Professional and Enterprise editions are supported. Other editors that support Roslyn based analyzers like Rider or OmniSharp should work too.

  • Open Source

Release Notes

https://security-code-scan.github.io/#ReleaseNotes

Dependencies

This package has no dependencies.

NuGet packages (5)

Showing the top 5 NuGet packages that depend on SecurityCodeScan:

Package Downloads
Dhgms.QualityAssurancePack
Collection of packages for assisting in QA during .NET software development
KnowYourLimits.AspNetCore
A rate limiting middleware for AspNetCore.
KnowYourLimits
A collection of rate limiting strategies.
SimairaDigital.CodingGuidelines
Simaira Digital BackendCoding Guidelines
SimairaDigital.CSharp.Coding.Guidelines
Simaira Digital C# Coding Guidelines

GitHub repositories (5)

Showing the top 5 popular GitHub repositories that depend on SecurityCodeScan:

Repository Stars
dotnet/orleans
Orleans is a cross-platform framework for building distributed applications with .NET
umbraco/Umbraco-CMS
The simple, flexible and friendly ASP.NET CMS used by more than 500.000 websites
ivanpaulovich/clean-architecture-manga
:cyclone: Clean Architecture with .NET5, C#9 and React+Redux. Use cases as central organizing structure, completely testable, decoupled from frameworks
ArduPilot/MissionPlanner
Mission Planner Ground Control Station (c# .net)
axzxs2001/Asp.NetCoreExperiment
原来所有项目都移动到**OleVersion**目录下进行保留。新的案例装以.net 5.0为主,一部分对以前案例进行升级,一部分将以前的工作经验总结出来,以供大家参考!

Version History

Version Downloads Last updated
3.5.4 50,401 2/10/2021
3.5.3 739,938 5/17/2020
3.5.2 16,311 5/8/2020
3.5.1 246 5/8/2020
3.5.0 294,081 2/27/2020
3.4.0 158,813 1/3/2020
3.3.0 213,669 9/13/2019
3.2.0 233,803 4/20/2019
3.1.0 7,837 4/4/2019
3.0.0 186,057 12/3/2018
2.8.0 84,773 7/23/2018
2.7.1 155,977 5/22/2018
2.7.0 348,149 4/6/2018
2.6.1 4,277 2/23/2018
2.6.0 709 2/21/2018
2.5.0 1,428 1/25/2018
2.4.1 1,670 12/31/2017