mirror of
https://github.com/fergalmoran/ladybird.git
synced 2025-12-28 20:29:42 +00:00
01cd838a4c
This rule attempts to flag invisible Unicode characters which would potentially be used by an attacker to hide code that humans can't see. https://pvs-studio.com/en/docs/warnings/v1076/ AKA the "Trojan Source" attack: https://arxiv.org/abs/2111.00169 Unfortunately our `LibUnicode` source code contains these hidden characters as they are part of the Unicode character set that the library exposes. So we have, and will always have 100s of false positives.