Skip to content

Releases: Qihoo360/safe-rules

v1.3.1

07 Apr 07:50
@brotherbeer brotherbeer
v1.3.1
99c268a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.3.1 Latest
Latest

融汇多方建议,对 1.3.0 的细节进行了全面地订正和润色:

  • 恭设致谢列表,诚谢同仁们的指引
  • 补全规则依据的标准条目,体现语言特性的历史变革
  • 补充优化配置选项,同时提升严谨性和灵活性

后续工作计划:

  • 继续落实 1.3.0 工作计划
Assets 2

v1.3.0

09 Jan 02:33
@brotherbeer brotherbeer
v1.3.0
d4fa13c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.3.0

当前版本收录 467 条规则,更新如下:

  • 遵循国家代码安全审计标准,全面加强规则的量化描述
  • 增补、细化规则,契合国家军用标准等严格规范体系的要求
  • 补充并发、网络、加解密相关规则
  • 加强示例的代表性和详实性
  • 修正笔误,精炼词句,提高表达效率

参照标准:

  • GJB 8114-2013
  • GB/T 39412-2020

后续工作计划:

  • 进一步融汇国家标准、行业标准,为企业标准提供依据
  • 跟进 C18、C++20 等语言标准
  • 结合实际代码,总结展示具体的攻防手段
Assets 2

v1.2.0

29 Apr 08:45
@brotherbeer brotherbeer
v1.2.0
2c046a5
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.2.0

当前版本收录 439 条规则,更新如下:

  • 强化中断与并发相关规则
  • 整理 C11 未定义行为成因列表
  • 整理 C++11 未定义行为成因列表与说明文档
  • 修正笔误,精炼词句,提高表达效率

语言层面的讨论已可告一段落,后续工作计划:

  • 强化并发、网络、加解密相关规则
  • 结合实际代码,总结展示具体的攻防手段
Assets 2

v1.1.0

03 Feb 03:40
@brotherbeer brotherbeer
v1.1.0
97ddff8
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.1.0

根据热心读者与产品团队的反馈,对上一版本进行了全面深入的修订,力求表述准确、文辞简练。

Assets 2

v1.0.0

15 Dec 04:40
@brotherbeer brotherbeer
v1.0.0
94b66d2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.0.0

当前版本收录 413 条规则,特点有:

  • 满足规范、审计、培训等多方面需求
  • 注重自动化代码审计的实现方法
  • 严格遵循ISO/IEC标准
  • 融汇多种权威规范体系
  • 适用于桌面、服务端及嵌入式等多种应用场景
Assets 2