MetaCredo.
View Source
Detects Time-of-Check-Time-of-Use (TOCTOU) race condition vulnerabilities (CWE-367).
Identifies patterns where a check function (exists?, stat, access) is followed by a use function (read, write, open) on the same resource, creating a race condition window between check and use.
Category: Security / Priority: high