https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105893
Bug ID: 105893 Summary: RFE: -fanalyzer could check putenv calls Product: gcc Version: 12.0 Status: UNCONFIRMED Severity: normal Priority: P3 Component: analyzer Assignee: dmalcolm at gcc dot gnu.org Reporter: dmalcolm at gcc dot gnu.org Blocks: 105887 Target Milestone: --- See https://clang.llvm.org/docs/analyzer/checkers.html#alpha-security-cert-pos-34c I think this might be relatively easy to implement using the analyzer's region model code. Referenced Bugs: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105887 [Bug 105887] RFE: clang analyzer warnings that GCC's -fanalyzer could implement