Flawfinder searches through source code for potential security
flaws, listing potential security flaws sorted by risk, with the
most potentially dangerous flaws shown first. This risk level
depends not only on the function, but on the values of the
parameters of the function.
Read more https://packetstormsecurity.com/files/163982/flawfinder-2.0.19.tar.gz