Flawfinder is a program that can automatically scan C/C++ code to look for potential security flaws, and is exceptionally easy to use. Version 1.27 of flawfinder has just been released! The main new feature is that flawfinder can now report on ONLY changes made in a program... so if you are submitting a patch to a program, you can use flawfinder to examine only those changes (instead of reporting on the entire program). This is really useful when dealing with big programs. Various other smaller improvements have been made as well. Enjoy!