Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add analyzer to report non-ascii character #17

Open
RootLUG opened this issue Nov 8, 2021 · 0 comments
Open

Add analyzer to report non-ascii character #17

RootLUG opened this issue Nov 8, 2021 · 0 comments
Labels
enhancement New feature or request good first issue Good for newcomers
Milestone
Aura v2.2

Comments

@RootLUG
Copy link
Contributor

RootLUG commented Nov 8, 2021

With the recent news on attacks leveraging the non-ascii characters, implement a new analyzer that would flag such characters as suspicious, namely:

  • strings containing non-ascii characters
  • variable names and attribute names containing non-ascii characters

This should be preferably configurable in a config file as it can produce a lot of false-positives or uninteresting results in some codebases, for example to turn it off/on completely as well as setting a trigger for min and max occurence of non-ascii characters
@RootLUG RootLUG added enhancement New feature or request good first issue Good for newcomers labels Nov 8, 2021
@RootLUG RootLUG added this to the Aura v2.2 milestone Nov 8, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request good first issue Good for newcomers
Projects
None yet
Milestone
Aura v2.2
Development

No branches or pull requests
1 participant
@RootLUG