wrongPrintfScanfArgNum false positive

Static source code analysis tool for C and C++ code

Brought to you by: danielmarjamaki

wrongPrintfScanfArgNum false positive

Forum: General Discussion

Creator: Nikita Leontiev

Created: 2026-03-27

Updated: 2026-03-27

cppcheck 2.20.0 generates wrongPrintfScanfArgNum for the following code:

#include <stdio.h>

int main()
{
    const char* str = "test.";
    const size_t size = 5;
    char buffer[size];
    sscanf_s(str, "%4[^.]", buffer, size);
    return 0;
}

test\main.cpp:8:2: error: sscanf_s format string requires 3 parameters but only 2 are given. [wrongPrintfScanfArgNum]
 sscanf_s(str, "%4[^.]", buffer, size);
 ^

CHR - 2026-03-27

Thanks for reporting, ticket is here: https://trac.cppcheck.net/ticket/14624

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Log in to post a comment.