Safeguard
Tag

taint-analysis

Safeguard articles tagged "taint-analysis" — guides, analysis, and best practices for software supply chain and application security.

10 articles

Application Security

The three dimensions of Python static analysis, and where each one blinds itself

AST scanners, taint trackers, and type checkers each solve a different problem — and each has a documented blind spot that lets real bugs through untouched.

Jul 8, 20266 min read
Application Security

Taint Analysis vs Reachability: What You Actually Need in 2026

Taint and reachability sound similar and answer different questions. Here is when each one matters, where vendors blur the line, and how to use both.

May 6, 20266 min read
AI Security

Zero-Day Discovery With LLM-Augmented Reachability: A Safeguard Engine Walkthrough

Pattern-matching scanners miss zero-days by definition. An engine that follows taint across package boundaries plus a model that hypothesizes exploit conditions can find what either would miss alone. Here is how that pipeline works end to end.

Apr 19, 20268 min read
Application Security

How Does SAST Work? Stages of SAST Scanning

A stage-by-stage breakdown of how SAST scanning actually works — parsing, taint analysis, false positives — with real CVEs and benchmark data.

Apr 16, 20267 min read
Application Security

What is Taint Analysis

Taint analysis traces untrusted input from source to sink to catch injection flaws. Learn how it works, what it misses, and how reachability analysis fixes the noise.

Feb 2, 20266 min read
Application Security

How taint analysis works in Snyk Code: tracking data from...

Snyk Code traces untrusted data from source to sink using interprocedural static analysis and ML ranking. Here's how the taint-tracking mechanics work.

Sep 14, 20258 min read
Application Security

How Snyk Code performs interprocedural data-flow analysis...

How Snyk Code tracks tainted data across function and file boundaries using call-graph summaries, taint propagation, and hybrid symbolic AI rules.

Sep 14, 20258 min read
Application Security

How Snyk Code distinguishes sanitizers from insecure sour...

How Snyk Code's taint-tracking engine tells sanitizers apart from insecure sources and sinks, and where the source-sink-sanitizer model still needs human review.

Sep 13, 20258 min read
Application Security

How Snyk Code detects cross-site scripting (XSS) through ...

How Snyk Code's taint analysis traces untrusted input from source to sink to flag reflected, DOM-based, and stored XSS with fewer false positives.

Sep 12, 20257 min read
Vulnerability Management

Taint Analysis for Zero-Day Discovery: A Primer

A practitioner's walk-through of taint analysis as a zero-day discovery technique, from classic Livshits and Lam foundations to modern flow-sensitive engines.

Apr 22, 20247 min read
taint-analysis — Safeguard Blog