This work package presents an information exposure checker which is designed to detect infor-
mation exposures in C/C++ code.
Information flow vulnerabilities in C code are detrimental as they can cause data leakages or
unexpected program behavior. Detecting such vulnerabilities with static code analysis techniques
is challenging because of complex control and data flow. Static analysis tools used for detecting
information exposure bugs can help software engineers detecting bugs without int... »