Alert Type Frequency Assessment of Open-Source Static Analysis Tools and Codebases

Copyright 2023 Carnegie Mellon University.

This work is licensed under a Creative Commons Attribution 4.0 International License.
https://creativecommons.org/licenses/by/4.0/

Alert Type Frequency Assessment of Open-Source Static Analysis Tools and Codebases was created with the use of various toolsets and codebases each subject to their own licenses (“Third Party Inputs”). The Third Party Inputs used by Alert Type Frequency Assessment of Open-Source Static Analysis Tools and Codebases is dependent upon the version being run, but typically includes the inputs identified in this license.txt file, and/or described in the documentation and/or ReadMe file distributed with the dataset. By using Alert Type Frequency Assessment of Open-Source Static Analysis Tools and Codebases, You agree to comply with any and all relevant terms and conditions contained in any such Third Party Inputs or separate license file distributed with such Third Party Inputs. The parties who own the Third Party Inputs ("Third Party Licensors") are intended third party beneficiaries to this License with respect to the terms applicable to their Third Party Inputs. Third Party Inputs licenses only apply to the Third Party Inputs and not any other portion Alert Type Frequency Assessment of Open-Source Static Analysis Tools and Codebases or Alert Type Frequency Assessment of Open-Source Static Analysis Tools and Codebases as a whole.

This material is based upon work funded and supported by the Department of Defense under Contract No. FA8702-15-D-0002 with Carnegie Mellon University for the operation of the Software Engineering Institute, a federally funded research and development center.

The view, opinions, and/or findings contained in this material are those of the author(s) and should not be construed as an official Government position, policy, or decision, unless designated by other documentation.

References herein to any specific commercial product, process, or service by trade name, trade mark, manufacturer, or otherwise, does not necessarily constitute or imply its endorsement, recommendation, or favoring by Carnegie Mellon University or its Software Engineering Institute.

NO WARRANTY. THIS CARNEGIE MELLON UNIVERSITY AND SOFTWARE ENGINEERING INSTITUTE MATERIAL IS FURNISHED ON AN "AS-IS" BASIS. CARNEGIE MELLON UNIVERSITY MAKES NO WARRANTIES OF ANY KIND, EITHER EXPRESSED OR IMPLIED, AS TO ANY MATTER INCLUDING, BUT NOT LIMITED TO, WARRANTY OF FITNESS FOR PURPOSE OR MERCHANTABILITY, EXCLUSIVITY, OR RESULTS OBTAINED FROM USE OF THE MATERIAL. CARNEGIE MELLON UNIVERSITY DOES NOT MAKE ANY WARRANTY OF ANY KIND WITH RESPECT TO FREEDOM FROM PATENT, TRADEMARK, OR COPYRIGHT INFRINGEMENT.

[DISTRIBUTION STATEMENT A] This material has been approved for public release and unlimited distribution.  Please see Copyright notice for non-US Government use and distribution.

Carnegie Mellon® and CERT® are registered in the U.S. Patent and Trademark Office by Carnegie Mellon University.

 
DM23-0522
