Analyzed
about 8 hours
ago.
based on code collected
about 8 hours
ago.
Project Summary
The CompCert project investigates the formal verification of realistic compilers usable for critical embedded software. Such verified compilers come with a mathematical, machine-checked proof that the generated executable code behaves exactly as prescribed by the semantics of the source program. By ruling out the possibility of compiler-introduced bugs, verified compilers strengthen the guarantees that can be obtained by applying formal methods to source programs.
The main result of the project is the CompCert C verified compiler, a high-assurance compiler for almost all of the C language (ISO C99), generating efficient code for the PowerPC, ARM, RISC-V and x86 processors.
In a Nutshell, CompCert...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a large development team
with increasing Y-O-Y commits -
...
took an estimated 54 years of effort (COCOMO model)
starting with its first commit in February, 2006
ending with its most recent commit 2 months ago
Quick Reference
https://github.com/AbsInt/CompCert
Project Security
Vulnerabilities per Version ( last 10 releases )
There are no reported vulnerabilities
Project Vulnerability Report
Security Confidence Index
Poor security track-record
Favorable security track-record
Vulnerability Exposure Index
Many reported vulnerabilities
Few reported vulnerabilities
Did You Know...
-
...
65% of companies leverage OSS to speed application development in 2016
-
...
search using multiple tags to find exactly what you need
-
...
there are over 3,000 projects on the Open Hub with security vulnerabilities reported against them
-
...
by exploring contributors within projects, you can view details on every commit they have made to that project
30 Day SummaryJul 16 2025 — Aug 15 2025
|
12 Month SummaryAug 15 2024 — Aug 15 2025
|
