Pscan checks C source code for problematic uses of printf style functions such as "sprintf(buffer, variable)", which have been the source of many security holes. It does not check for buffer overflows or other misuse of function parameters.
cb2bd189b24663cf55c1b9bdbb2a40e2e84b75ece85ee86e49e70a5a8336c490