flawfinder

Scans source code to identify potential security weaknesses

brewmacoslinux

Try with needOr install directly

About

Examines code and reports possible security weaknesses

flawfinder

Scan a single C file for security issues$ flawfinder myprogram.c

Recursively scan entire directory with minimal false positives$ flawfinder --minlevel=4 /path/to/source

Generate CSV output for integration with other tools$ flawfinder --csv /path/to/code > report.csv