Skip to main content
Version: 1.2.0

Quandary

The Quandary taint analysis detects flows of values between sources and sinks, except if the value went through a "sanitizer". In addition to some defaults, users can specify their own sources, sinks, and sanitizers functions.

***DEPRECATED*** Taint analysis is now supported by the Pulse checker and Quandary will be removed in the next release.

Activate with --quandary.

Supported languages:

  • C/C++/ObjC: Yes
  • C#/.Net: No
  • Erlang: No
  • Hack: No
  • Java: Yes
  • Python: No

Quandary is a static taint analyzer that identifies a variety of unsafe information flows. It has a small list of built-in sources and sinks, and you can define custom sources and sinks in your .inferconfig file (see example here).

List of Issue Types​

The following issue types are reported by this checker: