Use advanced static analysis tools for feature detection

The techniques currently used to match algorithmic features in a given source code are:

- a conversion of its AST into a textual flattened representation;
- regular expressions for low-level features;
- SQL queries for derived features.

This is not quite satisfying for a number of reasons:

- Although the creation of new regular expressions for Paroxython is partially automated (see [`suggest_regexp.py`](https://laowantong.github.io/paroxython/developer_manual/index.html#helper-programs)) and do not require advanced functionalities like recursion (thanks to the flattening of the AST), they remain notoriously difficult to read and maintain.
- Using SQL to derive new features is highly unusual, and sometimes verbose.
- No support for inference.
- Not based on sound theoretical foundations, resulting in fragile patterns, false negative on corner cases, etc.

It would be interesting to explore third-party static analytic tools, and try to replace gradually my home-made patterns. The tools I am currently aware of are:

- [CodeQL](https://securitylab.github.com/tools/codeql) (GitHub);
- [Pysa](https://engineering.fb.com/security/pysa/) (Facebook);
- [Astroid](http://pylint.pycqa.org/projects/astroid/en/latest/) (Logilab, PyCQA and contributors).

I have no experience in any of them, though.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Use advanced static analysis tools for feature detection #59

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Use advanced static analysis tools for feature detection #59

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions